Talent.com
DevSecOps Engineer

DevSecOps Engineer

Black Rock Solutions CorporationLexington, KY, US
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Job Description

Job Description

Overview

We are hiring a seasoned Staff DevSecOps Engineer to embed security at every stage of the software development lifecycle. This is a hands-on role for someone passionate about security automation, cloud platforms, and driving secure DevOps practices. Ideal candidates bring 5–8+ years of experience and a strong grasp of CI / CD, Kubernetes, cloud security, and infrastructure as code.

Key Responsibilities

  • Integrate security seamlessly into the CI / CD pipeline across the software development lifecycle.
  • Design, implement, and manage security automation tools and workflows.
  • Define and enforce cloud and on-premises security policies and best practices.
  • Monitor, analyze, and remediate security vulnerabilities and incidents.
  • Perform code reviews, vulnerability scans, and penetration tests.
  • Secure Kubernetes clusters and containerized environments.
  • Implement and manage security tools (firewalls, IDS / IPS, endpoint protection).
  • Automate security tasks using Python and shell scripting.
  • Manage infrastructure using Terraform, OpenTofu, or CloudFormation.
  • Participate in incident response and disaster recovery planning.

Qualifications

  • 5+ years in DevSecOps, Security Engineering, or DevOps with a strong security focus.
  • Hands-on experience with AWS (or GCP / Azure with willingness to move into AWS).
  • Proficient with CI / CD tools such as GitHub Actions, Jenkins, GitLab CI, or CircleCI.
  • Strong Kubernetes experience in production environments.
  • Experience with infrastructure-as-code tools : Terraform, OpenTofu, or CloudFormation.
  • Strong programming skills in Python and shell scripting.
  • Deep knowledge of secure coding practices, encryption, and access control.
  • Excellent communication and cross-functional collaboration skills.
  • US Citizenship or a Green Card is required due to ITAR data handling.

    • Preferred Qualifications

  • Security architecture and secure system design experience.
  • Experience with JavaScript and securing JavaScript-based applications.
  • Certifications such as CISSP, Security+, or AWS Security Specialty are a plus.
  • Experience automating security in microservices architectures.
  • Bachelor’s degree in Computer Science, Information Security, Engineering, or equivalent experience.

    • Recruiter Notes

  • Ideal candidates are passive job seekers with startup or technology company experience.
  • Avoid candidates from finance or government backgrounds with limited hands-on exposure.
  • Work mode : Hybrid (3 days onsite for time zone alignment with EU).
    • serp_jobs.job_alerts.create_a_job

    Engineer • Lexington, KY, US