DevSecOps Engineer
Home Office: Washington, DC
Applications have closed
Guidehouse
Guidehouse is the only scaled consultancy in the world to fully integrate commercial and public or government businesses within each of our industry segments because complex problems require both perspectives to address and outwit.Job Family:
Software Development & Support
Travel Required:
Clearance Required:
What You Will Do:
As a DevSecOps Engineer, you will be part of the Innovation and Technology group (ITG) at Guidehouse Digital supporting government systems. In this role, you will be responsible for integrating security practices into our software development and deployment processes, ensuring the continuous delivery of secure and reliable applications. The ideal candidate will have a deep understanding of development, security, and operations principles, with a passion for automating and streamlining workflows to enhance both efficiency and security.
- Collaborate with cross-functional teams to design, implement, and maintain secure and scalable DevSecOps pipelines that integrate continuous integration, continuous delivery (CI/CD), and security practices.
- Automate deployment, configuration, and monitoring of infrastructure and applications using modern tools and technologies.
- Implement and enforce security controls and best practices throughout the software development lifecycle.
- Conduct regular security assessments, vulnerability scans, and penetration tests to identify and address potential security vulnerabilities.
- Ensure compliance with industry standards and regulatory requirements related to security and privacy.
- Integrate security tools and practices, such as static analysis, dynamic analysis, and container security, into the CI/CD pipeline.
- Monitor and respond to security incidents and alerts, coordinating with relevant teams to implement timely solutions.
- Provide technical expertise and guidance to development and operations teams on security best practices and risk mitigation strategies.
- Stay up-to-date with emerging security threats and vulnerabilities, and proactively recommend solutions to address potential risks.
- Collaborate with the development team to ensure that security is incorporated into the design and architecture of applications.
- Participate in code reviews, identify security flaws, and suggest remediation strategies.
- Document processes, procedures, and best practices to improve team knowledge and efficiency.
What You Will Need:
- Minimum FOUR (4) years of experience as a DevSecOps Engineer, Security Engineer, or similar role.
- Experience with Node.js, npm, and yarn.
- Experience with DevSecOps, CI/CD, application modernization, and/or cloud-native application development will provide a useful context for the work that needs to be done.
- Strong knowledge of DevOps principles and practices, as well as software development methodologies.
- Familiarity with cloud computing platforms (e.g., AWS, Azure, Google Cloud) and infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation).
- Experience with containerization technologies such as Docker and Kubernetes.
- Proficiency in scripting and automation using languages such as Python, PowerShell, or Bash.
- Knowledge of security frameworks and compliance standards (e.g., NIST, CIS, OWASP).
- Hands-on experience with security tools such as vulnerability scanners, intrusion detection systems, and log analysis tools.
- Strong problem-solving skills and the ability to analyze complex technical issues.
- Excellent communication skills to collaborate with both technical and non-technical stakeholders.
What Would Be Nice To Have:
- Relevant certifications such as Certified DevSecOps Engineer, Certified Information Systems Security Professional (CISSP), or equivalent, are a plus.
- Master’s degree in computer science, information systems, mathematics, physics, or related discipline.
What We Offer:
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
Medical, Rx, Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Position may be eligible for a discretionary variable incentive bonus
Parental Leave and Adoption Assistance
401(k) Retirement Plan
Basic Life & Supplemental Life
Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
Short-Term & Long-Term Disability
Student Loan PayDown
Tuition Reimbursement, Personal Development & Learning Opportunities
Skills Development & Certifications
Employee Referral Program
Corporate Sponsored Events & Community Outreach
Emergency Back-Up Childcare Program
Mobility Stipend
About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.
Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.
If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.
Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.
Tags: Automation AWS Azure Bash CI/CD CISSP Clearance Clearance Required Cloud Compliance Computer Science DevOps DevSecOps Docker GCP Intrusion detection Kubernetes Log analysis Mathematics Monitoring NIST Node.js OWASP Physics PowerShell Privacy Python Scripting SDLC Security assessment Terraform Vulnerabilities Vulnerability scans
Perks/benefits: Career development Competitive pay Flexible spending account Health care Insurance Medical leave Parental leave Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs