DevSecOps Engineer

This position is 100% remote. Candidates must be eligable to obtain a US Secret Clearance. Candidates need to live in either the Eastern or Central Time Zone.

This role will be focused on implementing DevSecOps practices and working closely with our engineering team to secure our cloud environment. Your expertise in cloud security, infrastructure-as-code, and GRC oversight will be crucial in ensuring compliance, security, and operational integrity across our systems. Candidates that apply must have strong GCP and Terraform hands on experience.

Key Responsibilities :

• Implement security controls and best practices in the GCP Cloud environment
• Establish GCP cloud governance frameworks.
• Work with the engineering team and architects to ensure secure cloud architecture design and deployment.
• Lead the preparation for third-party security assessments, specifically targeting compliance with industry security frameworks like NIST.
• Provide hands-on expertise in implementing security solutions and integrating them throughout the development lifecycle.
• Develop, enhance, and maintain infrastructure-as-code setups using Terraform, ensuring efficient and secure deployment processes.
• Collaborate with the team to create Terraform modules and reusable components for consistent and scalable infrastructure management.
• Conduct code reviews and provide guidance on Terraform best practices to ensure high-quality infrastructure code.
• Contribute to the enhancement and maintenance of infrastructure-as-code setups using Terraform.
• Support the team with security-related incidents and ensure continuous improvement of cloud security practices.
• Utilize GCP tools such as Cloud Security Command Center, Cloud Armor, and Forseti Security to enhance security posture.
• Implement and manage GCP Identity and Access Management (IAM) policies and roles.
• Leverage GCP's VPC Service Controls to protect sensitive data.

Ideal Candidate Qualifications :

Required Skills : Must have a very strong DevSecOps Background Strong Terraform MUST MUST MUST have GCP (Google Cloud Platform experience) Must have NIST experience

Basic Qualification :

Additional Skills :

Long term contract, remote

Background Check : Yes

Drug Screen : Yes

Notes :

Selling points for candidate : Long term contract, remote

Project Verification Info :

Candidate must be your W2 Employee : Yes

Exclusive to Apex : Yes

Face to face interview required : No

Candidate must be local : No

Candidate must be authorized to work without sponsorship : Yes

Interview times set : Yes

Type of project : Master Job Title :

Branch Code :