Devsecops Engineer

DEVSECOPS ENGINEER

12 MONTHS CONTRACT

HARTFORD, CONNECTICUT

100% REMOTE OPPORTUNITY

VISA- USC/GC ONLY

WILL CONVERT TO PERM AFTER 12 MONTHS

The DevSecOps Engineer - Cloud Migrations This role will play a crucial part in blending DevOps and governance practices to enhance the security of our continuously growing cloud footprint. The individual must have worked in an Enterprise environment that includes experience supporting multi-account, multi-cloud services.

This expert will help the team to achieve our goals of:

Keeping our cloud environments secure & compliant.

Quick & seamless security alignment on M&A projects.

Shifting security left for a seamless development experience.

Key Responsibilities:

Risk Remediation on Cloud Migrations:

Transfer ownership and merge cloud platforms from multiple acquisitions.

Roll-out security monitoring and controls to newly acquired cloud accounts.

Implement critical mitigation plans and hot fixes from findings.

Create cost and security reports partitioned by business unit.

Secure Software Development Lifecycle:

Serve as the technical owner of our GitHub Enterprise tenant.

Manage the configuration of GitHub & the Advanced Security features.

Develop and maintain CI/CD pipelines with reusable GitHub Actions templates for various cloud deployment patterns.

Collaborate with development teams to ensure consistent and secure application deployments.

Cloud Governance and Guardrails:

Configure and manage AWS Service Control Policies (SCPs)

Establish and maintain governance practices to monitor cloud resources.

Partner with Incidence Response team to customize WIZ integration.

Compliance Dashboard and Alerting:

Using the existing cloud-based security tooling, create and maintain compliance dashboards for tracking adherence to security standards and policies.

Implement alerting mechanisms for timely response to compliance issues.

Create meaningful metrics on the existing cloud security maturity that can be used to drive priorities.

Qualifications:

Knowledge of security best practices and compliance frameworks (HIPPA, SOX)

Proven experience working with AWS and Azure cloud platforms.

Strong proficiency in Terraform for infrastructure provisioning and automation.

Expertise in scripting languages such as Python, Bash, or PowerShell.

Hands-on experience with production deployments and troubleshooting.

Familiarity with FinOps principles and practices.

Excellent communication skills and the ability to collaborate with cross-functional teams.

Nice to Have:

Knowledge of AWS Security Hub, Microsoft Defender, WIZ

Previous participation in security audits of cloud environments

AWS Certifications - with equivalent experience

Familiar with Active Directory/Azure AD/Azure AD Domain Services

Understanding of Azure Virtual Desktop Services

Education and Experience:

5+ years of hands-on experience to match the skills described above

Degree in Computer Science, Cybersecurity, or equivalent industry experience