Senior DevSecOps Engineer (Remote)

Company Overview:

Integrated Data Services (IDS) is a leading provider of custom software products and Government financial management services. IDS was founded in 1997 in El Segundo, CA, and since that time has seen tremendous growth and success. Currently, IDS has offices supporting customers nationwide. By providing customers with fast, efficient and reliable information systems and support services, IDS has become a preferred provider of financial and programmatic systems, services and solutions across a wide variety of government agencies.

Position Description:

IDS is currently searching for a DevSecOps Engineer with deep expertise in AWS cloud infrastructure, containerization, and security automation. You will be responsible for architecting and implementing secure CI/CD pipelines, managing Kubernetes clusters, deploying infrastructure as code using Terraform/OpenTofu, and embedding security controls throughout the software development lifecycle. The ideal candidate is a proactive problem solver who balances security requirements with operational efficiency and development velocity. The candidate will have opportunities to expand their skill set by working with emerging security tools, implementing compliance-as-code frameworks, and collaborating across development, operations, and security teams to build resilient, secure systems

Core DevOps Skills:

• 3+ years of experience in AWS cloud services (EC2, ECS/EKS, S3, Lambda, RDS, ALB, VPC, IAM) is required
• 3+ years of experience in Container technologies (Docker and/or Podman) is required
• 3+ years of experience in CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions, or similar) is required
• 3+ years of experience in Git version control and branching strategies is required
• 2+ years of experience in Infrastructure as Code (Terraform and/or OpenTofu) is required
• 2+ years of experience in Kubernetes orchestration (deployment, scaling, monitoring, troubleshooting) is required
• 2+ years of experience in Configuration management (Ansible, Chef, or Puppet) is preferred
• 2+ years of experience in Monitoring and observability (Prometheus, Grafana, ELK stack, CloudWatch) is preferred

Security Tools & Practices:

• 3+ years of experience in DevSecOps practices (security automation, shift-left security) is required
• 2+ years of experience in Container security scanning (Trivy, Aqua, Twistlock, Anchore, or similar) is required
• 2+ years of experience in Static/Dynamic Application Security Testing (SAST/DAST tools like SonarQube, Checkmarx, OWASP ZAP) is required
• 2+ years of experience in Integrating security gates into CI/CD pipelines is required
• 2+ years of experience in Secrets management (Vault, AWS Secrets Manager, or similar) is required
• 2+ years of experience in Vulnerability management and remediation workflows is required
• 1+ years of experience in Software Composition Analysis for dependency scanning (Trivy, Snyk, or similar) is preferred

Compliance & Hardening:

• 2+ years of experience in Security compliance frameworks (NIST, STIG, CIS benchmarks, FedRAMP) is required
• 2+ years of experience in Security hardening and baseline configuration is required
• 2+ years of experience in Audit logging and security event monitoring is required

Security Architecture:

• 2+ years of experience in Identity and Access Management (IAM policies, RBAC) is required
• 2+ years of experience in Network security (security groups, NACLs, WAF, network segmentation) is required
• 1+ years of experience in Certificate management and PKI is required
• 2+ years of experience in Security code review practices is preferred
• 2+ years of experience in Container and Kubernetes security (Pod Security Standards, Network Policies, image signing) is preferred

Integration & Data Tools:

• 2+ years of experience in API gateway management is preferred
• 1+ years of experience in ETL platforms (Talend and/or Apigee) is preferred

Scripting & Programming:

• 3+ years of experience in Scripting languages (Python, Bash, or Go) is required
• 3+ years of experience in YAML/JSON configuration is required

Soft Skills:

• Must have security mindset and risk assessment thinking
• Must have strong problem-solving and troubleshooting abilities
• Must be able to balance security requirements with development velocity
• Cross-functional collaboration with development and operations teams is required
• Documentation and knowledge sharing is required
• Communication of security risks to technical and non-technical stakeholders is required
• Incident response and on-call readiness is required
• Staying current with emerging security threats and vulnerabilities is required

Education & Certifications:

• This position requires a minimum of a Bachelor's degree from an accredited college or university in Engineering, Information Technology, Computer Science or related field is preferred.
• Experience in lieu of education may be considered if the individual has 4 or more years of equivalent technical training or work/military experience.
• Relevant certifications to include AWS Certified Solutions Architect, CKA, Terraform Associate are preferred
• Security certifications to include Security+, CISSP, CEH, or similar are highly desired
• Cloud security certifications to include AWS Security Specialty, Azure Security Engineer) are preferred

Physical & Mental Qualifications:

• Must be able to sit, type, hear, see, and speak for extended periods of time.
• Must consistently work and type on a computer for prolonged periods of time.
• Must be able to able to communicate accurate information and ideas so others will understand.
• Must be able to lift/carry at least 15 lbs.
• May be required to move about inside an office to access file cabinets, office supplies, etc.

Security Clearance:

• Applicants selected for employment will be subject to a federal background investigation and must meet additional eligibility requirements for access to classified information or materials.
• Active Secret clearance preferred; ability to obtain and maintain required clearance is mandatory.

Travel:

• Some travel may be required.

Hours:

• Normal work schedule hours may vary, Monday through Friday. May be required to work additional hours and/or weekends, as needed, to meet deadlines or to fulfill travel obligations.

Salary Range:

• $140,000 - $160,000 per year
• The estimated salary range listed is a good faith determination of potential base compensation that may be offered to a successful applicant for this position at the time of this job posting and may be modified in the future. The disclosed salary range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. When determining an applicant’s compensation, various factors are taken into consideration including, but not limited to: geographic location, relevant prior work experience, relevant training, special skills/competencies, education, clearance, licenses/certifications, labor categories/contract rates and other business needs.

IDS offers a robust benefits package including employer paid health, dental, vision, disability, AD&D and life insurance plans for eligible employees. IDS also offers a variety of elective plans to eligible employees including flexible spending accounts, voluntary life insurance and supplemental insurance plans. Benefits become effective the first of the month following the start date of employment unless starting on the 1st of the month, in which case benefits are effective immediately upon the eligible employee’s start date. IDS offers eligible employees eleven (11) paid holidays, generous PTO accruals starting at three (3) weeks per year, as well as a 401(k) safe harbor contribution upon eligibility. IDS also offers generous employee referral bonuses.

IDS is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regards to age (40 and over), color, physical or mental disability, gender identity or expression, genetic information (including family medical history), national origin or ancestry, race, religion, sex, pregnancy (including childbirth and related medical conditions), sexual orientation, citizenship status, veteran status, uniformed service member status, or any other characteristic protected by federal, state, or local law. IDS participates in E-Verify. To learn more about E-Verify, including your rights and responsibilities, please visit www.e-verify.gov/. A submission of a resume is an expression of interest and not considered an application.

For more information, visit www.get-integrated.com.

Disclaimer: This job description is intended to provide an overview of job responsibilities that are subject to change.

**U.S. citizenship is required; H1-B visas and other visas are not being sponsored. Relocation expenses are NOT compensated. All jobs are employer paid; no fees to candidates. Third parties or agency inquiries are not being accepted at this time.**

#IDS