Key skills
PythonBashAWSAzureTerraformKubernetesDockerJenkinsGitHub ActionsGitLab CIAzure DevOpsPrismaGitHubGitLabAgileCI/CDMentoringCommunicationCollaborationSnykTrivySonarQubeOWASP
About this role
Sigmaways Inc is looking for a Lead Security Engineer to help drive their DevSecOps transformation. This role will focus on embedding automated security controls into CI/CD pipelines and development workflows while supporting cloud and platform modernization initiatives.
Responsibilities:
- Design, implement, and maintain security controls within GitLab CI/CD pipelines
- Build and maintain automated security scanning and build gate capabilities
- Develop pipeline automation scripts using Python, Bash, or similar tools
- Implement and enforce container security policies aligned with Federal Reserve standards
- Create reference architectures and secure pipeline implementation examples
- Partner with Security Champions and development teams to enable secure development practices
- Support pipeline telemetry and security metrics collection
- Coordinate with GRC teams on security control validation and evidence gathering
- Provide technical mentoring and training on DevSecOps practices
- Advocate for security best practices throughout the Secure Software Development Lifecycle (SSDLC)
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or related field
- At least 5 years in DevOps, SRE, Platform Engineering, or Security Engineering
- At least 3 years working with CI/CD platforms (GitLab CI/CD preferred; Jenkins, GitHub Actions, Azure DevOps also relevant)
- Strong experience with Docker, Kubernetes, or container platforms
- Experience with Terraform or Infrastructure-as-Code
- Hands-on experience with AWS
- Proficiency in Python, Bash, or other scripting languages
- Experience integrating security tools into CI/CD pipelines
- Knowledge of OWASP Top 10 and application security principles
- Strong collaboration and communication skills in Agile environments
- Experience with Semgrep, SonarQube, Snyk, Black Duck, Trivy, Prisma, or OWASP ZAP
- Experience securing data platforms or data lakehouse environments
- AWS DevOps Engineer or Solutions Architect certification
- Security certifications such as GIAC
- US Citizen or Green Card holder
- Ability to obtain Federal Reserve security clearance