IT DevSecOps Architect

As a Senior IT DevSecOps Architect, you will lead the design, implementation, and optimization of secure cloud-based application and infrastructure environments. Your primary focus will be integrating development, security, and operations best practices to support the modernization of enterprise applications and migration from legacy platforms to cloud-native solutions. Key responsibilities include:

• Designing, implementing, and maintaining secure, scalable, and highly available cloud infrastructure environments.
• Architecting and supporting multi-environment deployments across development, testing, staging, and production.
• Developing and implementing DevSecOps strategies, standards, and best practices.
• Designing, building, and optimizing Continuous Integration (CI) and Continuous Deployment (CD) pipelines.
• Implementing Infrastructure as Code (IaC) solutions to automate provisioning and configuration management.
• Integrating security controls and compliance requirements throughout the software development lifecycle.
• Automating operational processes to enhance efficiency, reliability, and consistency.
• Supporting containerized application deployments and orchestration platforms.
• Designing and implementing monitoring, logging, and observability solutions for ongoing optimization.
• Collaborating with cross-functional teams including development, security, infrastructure, and business stakeholders to deliver secure and reliable solutions.
• Evaluating emerging technologies, tools, and frameworks to continually improve DevSecOps capabilities.
• Identifying and mitigating security risks in cloud and application environments.
• Driving process improvement initiatives and establishing operational best practices.
• Creating and maintaining technical documentation, architecture diagrams, and operational procedures.
• Optimizing system performance, scalability, reliability, and resiliency.

• Bachelor's degree in Computer Science, Information Technology, Engineering, or a related field.
• Seven (7) or more years of experience in DevOps, DevSecOps, cloud infrastructure, or related technical disciplines.
• Strong experience with Amazon Web Services (AWS), including secure cloud architecture and administration.
• Thorough understanding of cloud security principles, security controls, and industry best practices.
• Expertise with Infrastructure as Code (IaC) tools such as Terraform.
• Proficiency with scripting and automation languages such as Python and Bash.
• Experience designing and implementing CI/CD pipelines to support modern application delivery.
• Hands-on experience with containerization and orchestration technologies like Docker, Kubernetes, and Amazon ECS.
• Familiarity with version control systems, particularly Git.
• Exposure to monitoring and logging platforms such as AWS CloudWatch and Grafana.
• Strong knowledge of cloud networking concepts and their implementation.
• Experience with Identity and Access Management (IAM) and access control frameworks.
• Background in implementing automated testing frameworks and test-driven development practices.
• Demonstrated leadership in cross-functional teams, ability to drive collaboration and alignment.
• Excellent written and verbal communication, problem-solving, and organizational skills.

Qualifications:

• Experience with Splunk administration, monitoring, or security analytics a plus.
• Background supporting federal, government, or highly regulated environments preferred.
• Familiarity with NIST 800-53 security controls and compliance frameworks is advantageous.
• Experience with FISMA compliance processes and security authorization activities preferred.
• Proficiency in designing and supporting cloud-native and microservices-based architectures.
• Background implementing security automation and compliance-as-code solutions.
• Relevant certifications highly desirable, including:

• AWS Certified DevOps Engineer Professional
• Certified Kubernetes Administrator (CKA) or other Kubernetes certification
• Docker certification