DevSecOps Subject Matter Expert

October 25, 2024

Apply Now

Receive Emails with Similar Jobs

New Light Technologies

WebsiteLinkedInAll Job Openings

New Light Technologies is a consulting firm that specializes in delivering integrated services in data science, geospatial and remote sensing, software and systems engineering, cloud and managed services, and cybersecurity. They cater to a variety of sectors including agriculture, healthcare, smart cities, emergency management, and government, offering innovative solutions to complex challenges through their scientific and technological expertise.

Geographic Information Systems • Software and Database Engineering • Various IT Sevices including Help Desk and Staff Augmentation • Document Management Systems • Cybersecurity

51 - 200 employees

Founded 2001

🔬 Science

🔒 Cybersecurity

🏛️ Government

📋 Description

• As a DevSecOps SME, you will have the opportunity to shape the future of secure automation and cloud practices across the enterprise, working with cutting-edge technologies and a collaborative team of forward-thinking engineers. • Act as a DevSecOps visionary, advising on best practices and long-term strategy. • Lead the development and execution of DevSecOps strategies, focusing on scalability, security, and efficiency. • Provide thought leadership to both technical and non-technical stakeholders, ensuring alignment with industry best practices and the organization’s long-term goals. • Lead the implementation of enterprise-wide security in CI/CD pipelines: Design and oversee secure, automated Continuous Integration/Continuous Deployment (CI/CD) workflows. • Implement security controls, testing, and compliance checks across the pipeline, ensuring that security is integrated into every stage of the development process, from code commit to deployment. • Serve as a technical leader in cloud security and infrastructure automation: Take charge of cloud security initiatives, ensuring that infrastructure and applications in cloud environments (AWS, Azure, GCP) are hardened and adhere to security standards. • Lead efforts to automate infrastructure deployment and management using Infrastructure as Code (IaC) practices while embedding security checks at every layer. • Interface with executive leadership to align DevSecOps strategies with business goals: Work closely with executive leadership to ensure that DevSecOps initiatives align with business objectives. • Translate complex technical concepts into business-focused strategies, helping to secure buy-in from key decision-makers. • Mentor and lead cross-functional teams: Provide guidance to DevOps engineers, security teams, and developers to promote a culture of security-first development. • Drive continuous improvement and innovation: Identify areas of improvement in current processes and propose innovative solutions to enhance security and automation within the organization’s development practices. • Stay up-to-date with the latest DevSecOps tools, trends, and methodologies.

🎯 Requirements

• 10+ years of experience in DevSecOps and security automation. • Expertise in CI/CD, security tools (e.g., SonarQube, AquaSec), and cloud security. • Strong knowledge of security governance and risk management. • Hands-on experience with Terraform, Ansible, CloudFormation, or similar tools for automating cloud infrastructure. • Certifications: Certified DevSecOps Professional, Certified Information Systems Security Professional (CISSP), AWS Certified DevOps Engineer, Certified Cloud Security Professional (CCSP) or equivalent certifications are highly desirable. • In-depth knowledge of Docker, Kubernetes, and securing containerized applications.

🏖️ Benefits

• 401(k) • 401(k) matching • Dental insurance • Employee assistance program • Employee discount • Flexible schedule • Flexible spending account • Health insurance • Health savings account • Paid time off • Parental leave • Professional development assistance • Referral program • Relocation assistance • Vision insurance