Senior DevSecOps Platform Engineer

The Senior DevSecOps Platform Engineer builds and maintains the secure internal developer platforms (IDP), automation, and infrastructure required to ship software reliably. They will bridge software development, operations, and cybersecurity by embedding automated security controls into continuous integration/continuous deployment (CI/CD) pipelines and Infrastructure as Code (IaC), * Platform Engineering: Design, build, and maintain scalable internal developer platforms, Hybrid Cloud environments (VMWare, OpenShift, AWS, Azure, GCP), and container orchestration systems (Kubernetes).

• DevSecOps: Building and maintaining CI/CD pipelines for a large enterprise using Jenkins, GitLab, or similar tools.
• Security Automation: Wire security with a shift-left approach to automate vulnerability scanning, secrets detection, and dependency checks within the CI/CD pipeline.
• Infrastructure as Code (IaC): Codify policies and provision resources programmatically using tools like Terraform, Ansible, or Bicep to enforce least-privilege access and secure configurations.
• Monitoring & Observability: Implement logging, monitoring, and alerting systems to detect misconfigurations or anomalies in real-time.
• Collaboration & Advocacy: Partner with software and security teams to resolve vulnerabilities, promote a culture of shared security responsibility, and improve developer experience.

• Master's degree in Computer Science, Engineering, Math, or a related field; Bachelor's Degree (with similar curriculum focus) plus 4 years additional work experience may be substituted.
• 8 + years of experience in software systems development, DevOps / DevSecOps, Site Reliability Engineering (SRE), or platform engineering.
• Proficient in major cloud providers (AWS, Azure, GCP) and Infrastructure as Code (IaC) utilizing Terraform and Ansible.
• Extensive experience building robust CI/CD pipelines (Harness, Jenkins, GitLab) integrated with security tooling (SAST, DAST, SCA).
• Expertise in Docker and Kubernetes, including specialized container environments like Alpine Linux.
• Skills with tool integration and script automation using Python, Go, and Bash within Linux (RHEL, Ubuntu, CentOS) and Windows environments.
• Understanding of risk and compliance frameworks, including SOC2 and FedRAMP/DoD.

Preferred Qualifications:

• Knowledge of Integrating generative AI technologies into DevSecOps lifecycle
• Tools Experience: Proficiency with monitoring tools such as Dynatrace, Datadog, New Relic, Grafana, Splunk, SolarWinds, AppDynamics.

Clearance Requirements:

• Active Secret clearance required with the ability to upgrade to Top Secret.

Physical Requirements:

• Must be able to remain in a stationary position 50%
• The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations