DevSecOps Engineer [211266]
Aquent · Alpharetta, GA · 4 days ago
RemoteRemoteEngineeringContract
Key Responsibilities
- Architect & Engineer: Design, scale, and maintain our global HashiCorp Vault Enterprise platform, ensuring seamless integration with Azure Key Vault and AWS KMS.
- Automate Everything: Utilize Terraform and Ansible to drive Infrastructure as Code (IaC), automating the deployment, orchestration, and lifecycle of security components.
- Embed SRE Principles: Integrate SRE frameworks into InfoSec infrastructure, focusing on observability, proactive monitoring, error budgeting, and disaster recovery to ensure high availability.
- Secure the Pipeline: Collaborate with development teams to embed DevSecOps practices into CI/CD pipelines (Jenkins, API security, PKI, encryption, and tokenization).
- Collaborate & Mentor: Work within an Agile/Scrum framework alongside Program Managers and Architects to communicate technical risks, while mentoring junior engineers on modern security practices.
- Maintain Operational Excellence: Author high-quality technical documentation (runbooks, standards) and oversee change management and incident response for core security platforms.
Required Qualifications
- Experience: 5+ years of experience in Cloud Security, DevSecOps, or Systems Engineering within enterprise environments.
- Secrets Management: Proven, hands-on experience designing, deploying, and managing HashiCorp Vault (ideally Vault Enterprise).
- Cloud Proficiency: Strong experience with Azure cloud environments and native security tools (Azure Key Vault); familiarity with AWS is highly advantageous.
- Automation & IaC: Strong proficiency with Terraform for infrastructure provisioning and Ansible (or Ansible Tower) for configuration management.
- Scripting: Proficient in Python and Bash for custom tool development and security automation.
- CI/CD & DevOps: Solid understanding of DevOps principles, version control, and building secure CI/CD pipelines (e.g., Jenkins).
Preferred Qualifications
- SRE Mindset: Familiarity with SRE concepts such as SLOs/SLAs, chaos engineering, and advanced observability tools.
- Core Networking & Security: Deep understanding of TCP/IP, PKI, SIEM systems, encryption methodologies, and secure coding practices.
- Agile Delivery: Experience working in Agile, Scrum, or Scaled Agile (SAFe) environments.
- Soft Skills: Strong analytical problem-solving skills, a growth mindset, and the ability to articulate complex security concepts to both technical and non-technical stakeholders.