Security Engineer

Role Overview

We are seeking an experienced Security Engineer (DevSecOps / CI/CD Security Consultant) to support secure software development initiatives within a cloud-based environment. The ideal candidate will have strong hands-on experience in CI/CD pipelines, automated security controls, and formal Security Assessment and Authorization (SA&A) processes within a federal/government environment.

Key Responsibilities

- Design, implement, and maintain secure
Continuous Integration/Continuous Deployment (CI/CD)
pipelines within a software development environment.
- Implement automated security scanning, security controls, and compliance checks within CI/CD workflows.
- Apply modern security principles and best practices to custom-built software applications.
- Lead and support
Security Assessment and Authorization (SA&A)
activities for cloud-based applications.
- Ensure security controls are embedded throughout the Software Development Life Cycle (SDLC).
- Collaborate with development, security, and infrastructure teams to enhance DevSecOps maturity and compliance posture.

Mandatory Qualifications & Experience

- Bachelor’s degree or College Diploma in a relevant field.
- Minimum
5 years of experience
in a software development environment with hands-on CI/CD pipeline implementation.
- Proven experience completing
Security Assessment and Authorization (SA&A)
within a federal/government environment (mandatory).
- Experience navigating the SA&A process for at least
two (2) cloud-based applications
developed within the past five (5) years.
- At least
2 years of experience within the past 5 years
implementing automated security scanning and controls in CI/CD pipelines.
- Demonstrated experience applying modern security principles to custom software applications released within the past three (3) years.
- Active
Secret or Top-Secret Clearance (mandatory)
.