This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior DevSecOps Engineer in the United States.
The Senior DevSecOps Engineer will play a critical role in supporting secure, compliant, and highly automated cloud and enterprise environments. This position focuses on implementing cybersecurity best practices within DevOps pipelines, managing vulnerability assessments, and ensuring identity and access management compliance. You will collaborate with technical and compliance teams to maintain federal standards, implement security controls, and integrate AI/ML security measures. The role provides opportunities to influence risk management strategies, contribute to continuous monitoring initiatives, and support mission-critical federal systems in a fast-paced, dynamic environment.
· Implement, configure, and maintain system scan policies using tools such as Nessus, ACAS, SCAP, and others to ensure compliance with federal vulnerability management requirements.
· Deploy and manage security monitoring tools (e.g., Splunk, ArcSight, SolarWinds, Google Security Command Center) for real-time threat detection and log aggregation.
· Review and analyze audit logs, generate reports, and identify anomalies to maintain adherence to internal control requirements.
· Manage identity and access controls using platforms like Okta, Google Workspace IAM, and Active Directory, enforcing least privilege and role-based policies.
· Configure and run static and dynamic application security testing (SAST/DAST) tools, analyze results, and coordinate remediation with development teams.
· Conduct database security scanning and assessment using tools such as DbProtect.
· Apply and evaluate security controls (e.g., NIST SP 800-53 Rev. 5), support A&A packages, and assist with continuous monitoring and POA&M management.
· Maintain system security documentation, communicate findings to stakeholders, and contribute to incident response and post-incident reviews.
· Evaluate AI/ML applications for security risks, ensuring model integrity, data privacy, and resilience against adversarial threats.
Requirements
· U.S. Citizenship and eligibility for a Public Trust or Secret clearance.
· 6–8 years of experience in Cybersecurity, Information Systems, or related fields, preferably supporting federal contracts.
· Hands-on experience with DevSecOps practices, CI/CD pipelines, and cloud-hosted web applications and infrastructure.
· Proficiency with vulnerability scanning tools, SIEM platforms, IAM systems, and container orchestration (Openshift, Kubernetes, Docker).
· Experience with cloud platforms, specifically Google Cloud Platform (GCP).
· Familiarity with SAST/DAST tools such as Checkmarx, Fortify, Invicti, WebInspect.
· Strong analytical, organizational, and communication skills to manage complex security operations.
· Knowledge of incident response, threat detection, and compliance with federal cybersecurity standards.
Preferred Qualifications:
· Security certifications such as Security+, CAP, CISSP, or CYSA+.
· Experience with FedRAMP, DISA STIGs, and CDM tools.
· Scripting and automation experience (PowerShell, Python) for log parsing and operational efficiencies.
· Prior experience supporting DHS, DoD, or civilian federal agencies.
Benefits
· Competitive salary range: $113,000–$188,000 per year.
· Medical, dental, vision, and prescription drug coverage.
· Paid personal and family sick time, company holidays, and parental leave.
· 401(k) retirement plan with company match.
· Group term life insurance, travel assistance, and voluntary AD&D coverage.
· Health Savings Accounts (HSA) and flexible spending accounts (FSA).
· Transit and parking commuter benefits.
· Short-term and long-term disability coverage.
· Tuition reimbursement, personal development, certifications, and learning opportunities.
· Employee referral program and corporate-sponsored events/community outreach.
· Care.com membership and employee assistance programs.
· Eligibility for discretionary variable incentive bonuses.
Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.
When you apply, your profile goes through our AI-powered screening process designed to identify top talent efficiently and fairly.
🔍 Our AI evaluates your CV and LinkedIn profile thoroughly, analyzing your skills, experience, and achievements.
📊 It compares your profile to the job’s core requirements and past success factors to determine your match score.
🎯 Based on this analysis, we automatically shortlist the 3 candidates with the highest match to the role.
🧠 When necessary, our human team may perform an additional manual review to ensure no strong profile is missed.
The process is transparent, skills-based, and free of bias — focusing solely on your fit for the role.
Once the shortlist is completed, we share it directly with the company that owns the job opening. The final decision and next steps (such as interviews or additional assessments) are then made by their internal hiring team.
Thank you for your interest!
#LI-CL1
Loading similar jobs...
Discover fully remote job opportunities in the United States at USA Remote Jobs. Apply for roles like Software Developer, Customer Service Specialist, Project Manager, and more!