SecDevOps Engineer

DevSecOps Engineer – AWS GovCloud | GitLab CI/CD

Citizenship Required
Performance Period: Through End of Year (Strong Extension Potential)

Build Secure Cloud Pipelines That Power Mission-Critical Systems

We are seeking a DevSecOps Engineer to design and operationalize secure, automated delivery pipelines within AWS GovCloud environments. This role is for a hands-on engineer who excels at integrating security into every layer of CI/CD while driving reliability, scalability, and speed.

You will architect GitLab-based DevSecOps pipelines, strengthen container security posture, and enable high-velocity application delivery without compromising compliance or governance.

If you thrive in high-security environments where automation, cloud infrastructure, and security engineering intersect — this role is built for you.

What You’ll Lead & Deliver

• Architect and manage GitLab CI/CD pipelines supporting secure AWS GovCloud deployments
• Design reusable CI/CD templates and optimize GitLab runners (including EKS-hosted runners)
• Embed security scanning (SAST, DAST, IAST, SCA, container scanning) directly into pipeline workflows
• Build and maintain hardened “golden” container images and enforce container security standards
• Implement GitOps deployment strategies using tools such as ArgoCD or Flux
• Optimize Terraform-based infrastructure as code for scalable, secure cloud provisioning
• Reduce deployment friction while increasing release confidence and security posture
• Partner with development teams to improve automation, testing, and code quality practices

Your Technical Expertise

DevSecOps & CI/CD

• Advanced GitLab knowledge (pipelines, runners, merge requests, issue tracking)
• Strong Git version control practices (branching, promotion, semantic release strategies)
• Experience building reusable CI/CD components or workflow templates

AWS Cloud (GovCloud Experience Preferred)

Hands-on experience with:

• EC2, Lambda, S3, EBS/EFS
• ECS and/or EKS (Kubernetes in AWS)
• SNS and CloudWatch
• Secure IAM and cloud-native monitoring practices

Containers & Kubernetes

• Docker image build, optimization, and lifecycle management
• Kubernetes orchestration, deployment strategies, and troubleshooting
• Container hardening and vulnerability management
• Managing container-based GitLab runners

Infrastructure as Code

• Advanced Terraform development and optimization
• Experience with CloudFormation, Ansible, or similar IaC tools

Security Automation

• Integrating SAST, DAST, IAST, and SCA into CI/CD pipelines
• Container scanning tools (Trivy, Prisma/Twistlock, Neuvector, etc.)
• Automated remediation workflows
• Incorporating linting, unit testing, and performance testing into pipelines

Scripting & Systems

• Strong Python and/or Bash scripting
• Comfortable navigating and administering Linux environments
• Collaborative mindset for paired engineering sessions

Certifications (Preferred, Not Required)

• GitLab Certification
• AWS Certification

What Sets You Apart

• You think in systems and automation, not manual processes
• You proactively eliminate bottlenecks and security gaps
• You design solutions that balance velocity with compliance
• You enjoy mentoring developers on secure DevOps practices

Why Join

• Work on secure, high-impact cloud infrastructure
• Own architecture decisions in a GovCloud environment
• Long-term contract stability with strong extension potential
• Collaborate with senior engineers on mission-driven systems

If you are a DevSecOps leader who believes security should accelerate delivery — not slow it down — we want to speak with you.