Application DevSecOps Engineer (1016)
Herdt Consulting, Inc. · Radford, VA · 3 mo ago
On-siteEngineering$96k–$137k/yrFull-time
Pipeline Design
Implement and maintain a DevSecOps framework for modernizing applications in the AECC environment.
Tool Integration
Security Enforcement
- Develop and enforce security gates within CI/CD pipelines, including SAST, DAST, and container scanning.
Modernization
- Assist in transitioning legacy applications to a cloud-native, Kubernetes-based orchestration platform.
Required Technical Skills
- CI/CD Orchestration: Expertise in GitLab, Azure DevOps, or Atlassian for automated workflows.
- Infrastructure as Code: Proficiency in Terraform and Ansible for environment provisioning.
- Containerization: Experience with Docker, Kubernetes, and Red Hat OpenShift.
Preferred Skills & Experience
- Security Testing: Knowledge of SonarQube, OWASP ZAP, and container scanners like Trivy or Clair.
- Secrets Management: Experience with HashiCorp Vault or Sealed Secrets.