Jan 9
Top Secret/SCI
Mid Level Career (5+ yrs experience)
CI Polygraph
IT - Security
Colorado Springs, CO (On/Off-Site)
DevSecOps Engineer
As a DevSecOps Engineer, you will play a pivotal role in designing, implementing, and managing secure and efficient software development and deployment pipelines. Collaborating with development, operations, and security teams, you will embed security practices into every stage of the software development lifecycle to ensure the delivery of reliable and secure solutions.
GoldenTech values innovative problem-solving and collaboration. Join us in driving secure solutions that align with mission-critical requirements and exceed client expectations.
Responsibilities
Collaborate with cross-functional teams to integrate robust security measures throughout the software development lifecycle.
Design, implement, and manage CI/CD pipelines that include automated security testing, vulnerability scanning, and compliance validation.
Develop and maintain infrastructure as code (IaC) configurations to ensure secure, scalable cloud and infrastructure deployments.
Conduct comprehensive security assessments, code reviews, and penetration testing to identify and mitigate vulnerabilities.
Monitor system and application logs for potential security threats and respond to incidents promptly.
Implement and oversee identity and access management (IAM) solutions, maintaining secure authentication and authorization processes.
Advise software engineers on secure coding practices and assist in addressing security vulnerabilities.
Contribute to incident response activities by investigating and mitigating breaches effectively.
Assist in creating and updating security policies, procedures, and related documentation.
Qualifications
Clearance: Active TS/SCI clearance with CI polygraph.
Experience:
6+ years in a DevSecOps or similar engineering role, specializing in security integration within software development workflows.
Proven experience with DevOps methodologies, CI/CD pipelines, and tools such as Jenkins, GitLab CI/CD, Artifactory, and SonarQube.
Hands-on experience building scalable DevSecOps solutions across IL5 to IL6+ environments.
Strong expertise with IaC tools like Terraform, CloudFormation, or Ansible.
Proficiency in cloud platforms such as AWS, Azure, or GCP, including securing cloud-based applications.
Advanced scripting skills in Python, Bash, or similar languages for automation.
Knowledge:
In-depth understanding of security best practices, vulnerabilities, and frameworks like OWASP and NIST.
Additional Information
GoldenTech is a systems integrator firm, focusing on solving complex problems in the areas of DevOps, Cloud and Cyber domains. In addition to offering Cloud based solutions that span Azure, AWS, and Google platforms, GoldenTech also provides cyber security solutions to help our customers from threats. We also provide full stack development on the .NET, J2EE platforms, and harness the synergy between DevSecOps and Agile to deliver solutions faster and on-time. GoldenTech prides ourselves in our ability to exceed in customer satisfaction thereby leading the way to continued customer engagement. Finally, we provide a platform to our workforce and empower them to meet our customers’ mission, while succeeding in their career goals. In addition to providing best in class solutions to our Fortune 150 clients and state agencies—since 2007, GoldenTech proudly serves our armed services by working with the US Army, Navy and the Air Force.
GoldenTech offers a comprehensive employee benefits package that includes PTO, 401k match, Federal holidays, Medical insurance, dental, vision, STD, LTD and AD&D.
Confidentiality Notice: Compensation and role details are confidential and must not be shared outside GoldenTech.
As a DevSecOps Engineer, you will play a pivotal role in designing, implementing, and managing secure and efficient software development and deployment pipelines. Collaborating with development, operations, and security teams, you will embed security practices into every stage of the software development lifecycle to ensure the delivery of reliable and secure solutions.
GoldenTech values innovative problem-solving and collaboration. Join us in driving secure solutions that align with mission-critical requirements and exceed client expectations.
Responsibilities
Collaborate with cross-functional teams to integrate robust security measures throughout the software development lifecycle.
Design, implement, and manage CI/CD pipelines that include automated security testing, vulnerability scanning, and compliance validation.
Develop and maintain infrastructure as code (IaC) configurations to ensure secure, scalable cloud and infrastructure deployments.
Conduct comprehensive security assessments, code reviews, and penetration testing to identify and mitigate vulnerabilities.
Monitor system and application logs for potential security threats and respond to incidents promptly.
Implement and oversee identity and access management (IAM) solutions, maintaining secure authentication and authorization processes.
Advise software engineers on secure coding practices and assist in addressing security vulnerabilities.
Contribute to incident response activities by investigating and mitigating breaches effectively.
Assist in creating and updating security policies, procedures, and related documentation.
Qualifications
Clearance: Active TS/SCI clearance with CI polygraph.
Experience:
6+ years in a DevSecOps or similar engineering role, specializing in security integration within software development workflows.
Proven experience with DevOps methodologies, CI/CD pipelines, and tools such as Jenkins, GitLab CI/CD, Artifactory, and SonarQube.
Hands-on experience building scalable DevSecOps solutions across IL5 to IL6+ environments.
Strong expertise with IaC tools like Terraform, CloudFormation, or Ansible.
Proficiency in cloud platforms such as AWS, Azure, or GCP, including securing cloud-based applications.
Advanced scripting skills in Python, Bash, or similar languages for automation.
Knowledge:
In-depth understanding of security best practices, vulnerabilities, and frameworks like OWASP and NIST.
Additional Information
GoldenTech is a systems integrator firm, focusing on solving complex problems in the areas of DevOps, Cloud and Cyber domains. In addition to offering Cloud based solutions that span Azure, AWS, and Google platforms, GoldenTech also provides cyber security solutions to help our customers from threats. We also provide full stack development on the .NET, J2EE platforms, and harness the synergy between DevSecOps and Agile to deliver solutions faster and on-time. GoldenTech prides ourselves in our ability to exceed in customer satisfaction thereby leading the way to continued customer engagement. Finally, we provide a platform to our workforce and empower them to meet our customers’ mission, while succeeding in their career goals. In addition to providing best in class solutions to our Fortune 150 clients and state agencies—since 2007, GoldenTech proudly serves our armed services by working with the US Army, Navy and the Air Force.
GoldenTech offers a comprehensive employee benefits package that includes PTO, 401k match, Federal holidays, Medical insurance, dental, vision, STD, LTD and AD&D.
Confidentiality Notice: Compensation and role details are confidential and must not be shared outside GoldenTech.
group id: 91128234
