DevSecOps Compliance Engineer
BigBear.ai · Annapolis Junction, MD · 1 wk ago
ManagementFull-time
About the role
As a DevSecOps Compliance Engineer at Bigbear.ai, you will be responsible for ensuring that all projects comply with security standards and regulations. This includes working closely with development teams to integrate security practices throughout the software development lifecycle.Responsibilities
- Develop and maintain compliance documentation and policies
- Collaborate with development teams to implement security best practices
- Conduct security assessments and audits
- Ensure adherence to industry standards and regulatory requirements
- Stay updated on emerging security threats and technologies
Requirements
- Bachelor's degree in Computer Science, Information Security, or related field
- Minimum 5 years of experience in IT security or DevOps roles
- Experience with CI/CD pipelines and automation tools
- Knowledge of security frameworks such as NIST, CIS, or OWASP
- Strong understanding of cloud security principles and practices
- Excellent communication and collaboration skills
Qualifications
- CISSP or equivalent certification preferred
- Experience with security testing tools like Burp Suite, Nessus, or OWASP ZAP
- Hands-on experience with AWS, Azure, or GCP
- Ability to work independently and as part of a team
Skills
- Strong analytical and problem-solving skills
- Proficient in Python, Bash, or other scripting languages
- Experience with DevOps tools such as Jenkins, GitLab, or Ansible
- Good understanding of network security concepts
Benefits
- Competitive salary package
- Flexible work schedule
- Professional development opportunities
- Health insurance benefits
- Employee assistance program