Jan 9
Top Secret/SCI
Senior Level Career (10+ yrs experience)
CI Polygraph
IT - Security
College Park, MD (On/Off-Site)
Senior DevSecOps Engineer
As a Senior DevSecOps Engineer, you will play an integral role in designing, implementing, and maintaining secure and efficient software development and deployment pipelines. Working closely with development, operations, and security teams, you will embed security practices throughout the software development lifecycle to deliver secure, high-quality solutions that meet mission-critical requirements.
GoldenTech values innovation, collaboration, and the pursuit of excellence. We are seeking individuals who thrive in dynamic environments and are passionate about developing secure, reliable, and efficient systems for our clients.
Responsibilities
Partner with development, operations, and security teams to integrate security protocols seamlessly into the software development lifecycle.
Design, build, and maintain CI/CD pipelines incorporating automated security testing, vulnerability assessments, and compliance checks.
Develop and manage infrastructure as code (IaC) configurations, ensuring secure and scalable cloud resources and infrastructure.
Conduct security assessments, code reviews, and penetration testing to identify and resolve application, code, and infrastructure vulnerabilities.
Monitor system and application logs to detect and address potential security incidents.
Implement and oversee identity and access management (IAM) systems to ensure secure authentication and authorization.
Provide secure coding guidance to software engineers and assist in remediating security issues.
Lead incident response efforts, investigating and mitigating security breaches in a timely manner.
Contribute to the development and maintenance of security policies, procedures, and associated documentation.
Qualifications
Clearance: Active TS/SCI clearance with CI polygraph.
Experience:
10+ years as a DevSecOps Engineer or related role, focusing on integrating security into software development processes.
Proven experience building scalable DevSecOps solutions for IL5 to IL6+ classification environments.
Hands-on experience with DevOps tools and CI/CD platforms such as Jenkins, GitLab CI/CD, Artifactory, SonarQube, Selenium, and Prisma Cloud.
Extensive experience securing cloud-based applications, especially on AWS, with familiarity in Azure and GCP.
Advanced expertise with infrastructure as code tools, including Terraform, CloudFormation, or Ansible.
Strong scripting skills in languages such as Python and Bash for automation and integration.
Proficiency with static code analysis, dynamic application security testing (DAST), and vulnerability scanning tools like Fortify and Acunetix.
Knowledge:
In-depth understanding of security frameworks (e.g., OWASP, NIST) and best practices for mitigating vulnerabilities.
Familiarity with common threat vectors and experience addressing them in development and operations environments.
Additional Information
GoldenTech is a systems integrator firm, focusing on solving complex problems in the areas of DevOps, Cloud and Cyber domains. In addition to offering Cloud based solutions that span Azure, AWS, and Google platforms, GoldenTech also provides cyber security solutions to help our customers from threats. We also provide full stack development on the .NET, J2EE platforms, and harness the synergy between DevSecOps and Agile to deliver solutions faster and on-time. GoldenTech prides ourselves in our ability to exceed in customer satisfaction thereby leading the way to continued customer engagement. Finally, we provide a platform to our workforce and empower them to meet our customers’ mission, while succeeding in their career goals. In addition to providing best in class solutions to our Fortune 150 clients and state agencies—since 2007, GoldenTech proudly serves our armed services by working with the US Army, Navy and the Air Force.
GoldenTech offers a comprehensive employee benefits package that includes PTO, 401k match, Federal holidays, Medical insurance, dental, vision, STD, LTD and AD&D.
Confidentiality Notice: Compensation and role details are confidential and must not be shared outside GoldenTech.
As a Senior DevSecOps Engineer, you will play an integral role in designing, implementing, and maintaining secure and efficient software development and deployment pipelines. Working closely with development, operations, and security teams, you will embed security practices throughout the software development lifecycle to deliver secure, high-quality solutions that meet mission-critical requirements.
GoldenTech values innovation, collaboration, and the pursuit of excellence. We are seeking individuals who thrive in dynamic environments and are passionate about developing secure, reliable, and efficient systems for our clients.
Responsibilities
Partner with development, operations, and security teams to integrate security protocols seamlessly into the software development lifecycle.
Design, build, and maintain CI/CD pipelines incorporating automated security testing, vulnerability assessments, and compliance checks.
Develop and manage infrastructure as code (IaC) configurations, ensuring secure and scalable cloud resources and infrastructure.
Conduct security assessments, code reviews, and penetration testing to identify and resolve application, code, and infrastructure vulnerabilities.
Monitor system and application logs to detect and address potential security incidents.
Implement and oversee identity and access management (IAM) systems to ensure secure authentication and authorization.
Provide secure coding guidance to software engineers and assist in remediating security issues.
Lead incident response efforts, investigating and mitigating security breaches in a timely manner.
Contribute to the development and maintenance of security policies, procedures, and associated documentation.
Qualifications
Clearance: Active TS/SCI clearance with CI polygraph.
Experience:
10+ years as a DevSecOps Engineer or related role, focusing on integrating security into software development processes.
Proven experience building scalable DevSecOps solutions for IL5 to IL6+ classification environments.
Hands-on experience with DevOps tools and CI/CD platforms such as Jenkins, GitLab CI/CD, Artifactory, SonarQube, Selenium, and Prisma Cloud.
Extensive experience securing cloud-based applications, especially on AWS, with familiarity in Azure and GCP.
Advanced expertise with infrastructure as code tools, including Terraform, CloudFormation, or Ansible.
Strong scripting skills in languages such as Python and Bash for automation and integration.
Proficiency with static code analysis, dynamic application security testing (DAST), and vulnerability scanning tools like Fortify and Acunetix.
Knowledge:
In-depth understanding of security frameworks (e.g., OWASP, NIST) and best practices for mitigating vulnerabilities.
Familiarity with common threat vectors and experience addressing them in development and operations environments.
Additional Information
GoldenTech is a systems integrator firm, focusing on solving complex problems in the areas of DevOps, Cloud and Cyber domains. In addition to offering Cloud based solutions that span Azure, AWS, and Google platforms, GoldenTech also provides cyber security solutions to help our customers from threats. We also provide full stack development on the .NET, J2EE platforms, and harness the synergy between DevSecOps and Agile to deliver solutions faster and on-time. GoldenTech prides ourselves in our ability to exceed in customer satisfaction thereby leading the way to continued customer engagement. Finally, we provide a platform to our workforce and empower them to meet our customers’ mission, while succeeding in their career goals. In addition to providing best in class solutions to our Fortune 150 clients and state agencies—since 2007, GoldenTech proudly serves our armed services by working with the US Army, Navy and the Air Force.
GoldenTech offers a comprehensive employee benefits package that includes PTO, 401k match, Federal holidays, Medical insurance, dental, vision, STD, LTD and AD&D.
Confidentiality Notice: Compensation and role details are confidential and must not be shared outside GoldenTech.
group id: 91128234
