Take2 Consulting, LLCRemote
Security Engineer (DevSecOps)
United States of America
Contract
5 days ago
No H1B
Key skills
TypeScriptPythonBashAIAWSTerraformKubernetesDockerCloudFormationAWS CDKCloudWatchCloud Security
About this role
Take2 Consulting, LLC is seeking a Security Engineer to join their team and help advance their DevSecOps capabilities. The role involves developing tools and processes for automating builds, testing, monitoring, and deployment, with a focus on cloud-native solutions while ensuring compliance with security standards.
Responsibilities:
- Develop and manage tools and processes to enhance DevSecOps maturity by automating builds, regression testing, monitoring, and release deployment across environments
- Build and secure cloud-native solutions, primarily using AWS, with a focus on containers and orchestration tools like Kubernetes and Docker
- Implement, maintain, and update Infrastructure-as-Code solutions such as AWS CDK, CloudFormation, or Terraform
- Automate complex tasks involving deployment, monitoring, and security operations, leveraging AI tooling to streamline workflows
- Operate within a government-facing regulated environment, ensuring compliance with standards such as FedRAMP Moderate, PCI DSS, or SOC2
- Manage and troubleshoot open source and commercial tools in cloud environments, ensuring operational stability and security
- Support governance, risk, and compliance (GRC) initiatives, including preparing for Authorization to Operate (ATO)
- Use scripting languages like Python and BASH to automate and optimize security and deployment processes
- Collaborate with cross-functional teams to implement security best practices and maintain cloud security posture
- Maintain knowledge of AWS security services such as GuardDuty, Macie, Detective, and Inspector
- Contribute to the development and deployment of enterprise cloud-native solutions involving Kubernetes, Docker, and AWS services
Requirements:
- A Bachelor's degree and 4+ years of experience in DevOps or DevSecOps, or 8+ years of experience in DevOps or DevSecOps in lieu of a degree
- 2+ years of experience developing tools and processes to drive DevSecOps maturity, including automation of builds, testing, and deployment
- Experience with managing and securing cloud-native solutions in AWS, especially containers
- Proficiency with Infrastructure-as-Code tools such as AWS CDK, CloudFormation, or Terraform
- Knowledge of object-oriented programming fundamentals and scripting languages like Python and BASH
- Experience with AWS security services such as GuardDuty, Macie, Detective, or Inspector
- Familiarity with compliance standards such as FedRAMP Moderate, HITRUST, PCI DSS, or SOC2
- Ability to operate in a government-regulated environment with an Authorization to Operate (ATO)
- Experience with Kubernetes administration and application deployment
- Knowledge of logging and management solutions like CloudWatch, OpenSearch, and AWS Organizations
- Ability to obtain Secret clearance
- Experience with TypeScript and Amazon Q
- Knowledge of AI tooling to accelerate security and deployment tasks
- Familiarity with scripting languages such as Python and BASH
- Experience triaging and resolving issues related to open source and commercial tools in cloud environments
- Understanding of keyboard engineering implementations
- Experience working in a regulated environment with GRC needs