Devops engineer
Irving, Texas, United States of America
Contract
1 week ago
Key skills
PythonJavaGoAIClaudeNode.jsSpring BootSpringJenkinsGitLab CIGitLabCI/CDCheckmarx
About this role
ey Responsibilities
- Design and build a centralized platform for SBOM and CBOM inventory.
- Scan applications, repositories, containers, dependencies, certificates, keys, crypto algorithms, TLS configurations, and runtime components.
- Integrate SBOM/CBOM and vulnerability scanning into Jenkins/GitLab CI/CD pipelines.
- Identify vulnerable dependencies, CVEs, weak cryptography, expired certificates, insecure TLS versions, hardcoded secrets, and non-compliant libraries.
- Build automation workflows to support remediation using Claude or similar AI coding agents.
- Automate safe fixes such as dependency upgrades, base image updates, configuration changes, and pull request creation.
- Ensure all AI-assisted remediations are validated through build, test, scan, approval, and audit workflows before merge or deployment.
- Build dashboards and reports for application inventory, vulnerability posture, crypto posture, remediation status, and SLA tracking.
- Work closely with application, security, DevOps, and platform teams.
Required Skills
- Strong hands-on experience with Java/Spring Boot.
- Experience with at least one additional language such as Node.js, Python, or Go.
- Experience building REST APIs, microservices, batch jobs, and platform integrations.
- Hands-on experience with Jenkins and/or GitLab CI/CD.
- Strong understanding of SBOM, dependency scanning, transitive dependencies, CVEs, and container image scanning.
- Experience with tools such as Syft, Grype, CycloneDX, SPDX, JFrog Xray, Sonatype, Checkmarx, Fortify, or Veracode.
- Good understanding of CBOM and cryptography inventory, including TLS/HTTPS, certificates, keys, cipher suites, encryption algorithms, hashing algorithms, signing algorithms, keystores, truststores, and secrets.