Senior DevSecOps Engineer Job Listing at SAIC in REMOTE WORK, VA (Job ID 2509058)

Description

Description

SAIC is seeking highly skilled and motivated Senior DevSecOps Engineer to begin an exciting and challenging career with our large Enterprise Application Support Program on one of our project delivery teams.  The candidate will integrate security practices into our DevOps processes, ensuring the development and deployment of secure applications. T

 Job Responsibilities:

• Integrate security into the CI/CD pipeline, automating security controls and ensuring security is embedded throughout the development lifecycle.
• Collaborate with development, operations, and security teams to define and implement security best practices and standards.
• Conduct security assessments, vulnerability analysis, and penetration testing to identify and mitigate security risks.
• Develop and maintain secure infrastructure as code (IaC) scripts using tools like Terraform, Ansible, or CloudFormation.
• Implement and manage security tools and technologies such as SIEMs, IDS/IPS, firewalls, and endpoint protection.
• Monitor and respond to security incidents, performing root cause analysis and implementing corrective measures.
• Educate and train development and operations teams on secure coding practices and security tooling.
• Stay up to date with the latest security threats, trends, and technologies, and proactively address potential risks.
• Create and maintain documentation related to security policies, procedures, and standards.
• Participate in security audits and compliance initiatives to ensure adherence to industry regulations and standards.

 

Qualifications

Required:

• Bachelor's degree in Computer Science, Management Information Systems, or relevant discipline (4 years of equivalent experience).
• Must be a U.S. citizen OR Permanent Resident Alien (Green card holder and NOT H1 Visa holder). 
• Ability to obtain and maintain a IRS MBI (Minimum Background Investigation) Security Clearance.
• Minimum of 5+ years of experience in DevOps, security engineering, or a related field experience with:
• Strong understanding of security principles and best practices, including threat modeling, risk assessment, and vulnerability management.
• Proficiency with DevOps tools and practices, including CI/CD pipelines, containerization (Docker, Kubernetes), and version control systems (Git).
• Proficiency in containerization technologies (Docker, Podman) and orchestration tools (Kubernetes, OpenShift).
• Experience with security tools such as OWASP ZAP, Burp Suite, Nessus, Metasploit, or similar.
• Solid understanding of cloud security concepts and experience with cloud platforms (AWS, Azure, Google Cloud).
• Strong scripting and automation skills using languages such as Python, Bash, or PowerShell.
• Effective communication and collaboration skills, with the ability to work cross-functionally and educate team members.
• Maintenance and ongoing development of continuous build/ integration infrastructure.
• Provide Source Control Management/Documentation, create and maintain fully automated CI build processes for multiple environments; write, build and deploy scripts.
• Support CI/CD tools integration, operations, change management, and maintenance. Support full automation of CI/CD testing.
• Support policies, standards, guidelines, governance and related guidance for both CI/CD operations and for work of developers.
• Enable successful release management by moving code from Development and Testing environments to Staging and Production.

Desired:

• IRS MBI Clearance highly desirable
• Relevant certifications such as CISSP, CEH, OSCP, AWS Certified Security  - Specialty, or similar are preferred.

Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

 Apply on company website