DevSecOps Engineer

Job Summary

To support the SEC's Disclosure Review Program, the full-time remote DevSecOps Engineer will build and secure cloud infrastructure, automate CI/CD pipelines, and integrate security tooling across the development lifecycle while serving as a resource for secure coding practices.

Key responsibilities

• Build and configure AWS cloud environments using Infrastructure as Code (IaC) best practices and integrate security tools to create CI/CD pipelines
• Deploy source code using automated pipelines built on GitHub Actions while adhering to SEC-approved IaC methodologies
• Coach developers on secure coding practices and maintain continuous cloud security monitoring to ensure compliance standards are met

Required qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
• Experience building and managing CI/CD pipelines using tools like GitHub Actions
• Proficiency with container management (Docker) and IaC tools (Terraform, Ansible)
• Expertise in configuring and securing AWS environments, including IAM and least-privilege enforcement
• Fluency in automation scripting and programming languages such as Python and Java