CrawlJobs Logo
Astrion Logo Astrion · IT - Software Development

Devsecops & Automation Engineer

United States Employment contract · Job Posted May 10, 2026
Apply Position
Job Link Share

Job Description

Astrion has an exciting opportunity for a highly experienced DevSecOps & Automation Engineer to build and maintain the automated pipelines, infrastructure provisioning, and secure software delivery processes that let CORE host and operate solutions at scale. This role makes onboarding fast, repeatable, and compliant. The engineer owns CI/CD pipelines, image hardening, policy-as-code, artifact management, and the reusable templates that solution teams use to deploy onto CORE. The engineer reports to both the CORE Lead and the Platform & Cloud Chief Engineer under a matrix model. This is a senior individual contributor role on a five-person team. The engineer must design, build, secure, and operate the automation layer with minimal supervision. Every solution that lands on CORE flows through pipelines this engineer owns. If those pipelines are slow, brittle, or insecure, the platform fails.

Job Responsibility

  • Develop and maintain CI/CD pipelines for platform and application deployment
  • Implement infrastructure-as-code using Terraform and Ansible Automation Platform
  • Manage artifact repositories and container registries
  • Build secure image pipelines aligned to DoD Iron Bank standards
  • Implement policy-as-code, automated compliance checks, and security gates
  • Integrate SAST, DAST, container scanning, and SBOM generation into delivery pipelines
  • Enable automated promotion across DEV, TEST, and OPS environments
  • Develop reusable onboarding templates and reference patterns for solution teams
  • Maintain artifact signing, supply chain integrity, and traceability across deployments
  • Partner with the Security & Compliance Engineer on control automation and evidence generation
  • Document onboarding workflows so solution teams can self-service against the platform

Requirements

  • Bachelor’s degree in Computer Science, Engineering, or related technical field. Equivalent experience considered
  • 8+ years in DevOps or DevSecOps engineering
  • Strong production experience with CI/CD tools such as GitLab, GitHub Actions, or Jenkins
  • Proficiency in containerization, Kubernetes, and OpenShift
  • Experience with security tooling and automated compliance gates
  • Direct experience building pipelines with Iron Bank hardened images
  • Strong scripting and automation skills in Bash, Python, or Go
  • Strong Networking background
  • Experience managing artifact repositories such as Artifactory or Nexus
  • Agile Experience
  • Active Top Secret

Nice to have

  • HashiCorp Certified: Terraform Associate or Professional
  • Red Hat Certified Specialist in Ansible Automation
  • GitLab Certified Associate or GitHub Actions certification
  • Experience with SonarQube, OWASP ZAP, Anchore, Trivy, or similar
  • Familiarity with NIST RMF and compliance-driven environments
  • Experience with cATO continuous monitoring evidence pipelines
  • Familiarity with GitOps patterns using Argo CD or Flux

What we offer

  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
Astrion - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Devsecops & Automation Engineer

8 matching positions

Devsecops Engineer

The DevSecOps Engineer is responsible for architecting, implementing, and mainta...
Location
Location
United States , Bethesda
Salary
Salary:
65592.00 - 136650.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer, Electrical, or Electronics Engineering, or Mathematics with a concentration in computer science or equivalent
  • Minimum 3 years of experience with cybersecurity engineering
  • Must be US citizen with the ability to obtain a Secret Clearance
Job Responsibility
Job Responsibility
  • Design, implement, and maintain secure CI/CD pipelines and DevSecOps automation for cloud, edge, and data environments
  • Integrate security controls, automated compliance checks, and vulnerability scanning into all stages of the software development lifecycle
  • Develop and maintain infrastructure as code (IaC) for AWS GovCloud, IoT gateways, and supporting systems
  • Implement and enforce secure configuration baselines, access controls, and monitoring for all client components
  • Support continuous monitoring, incident response, and vulnerability management in compliance with DoD RMF, IL4, and FedRAMP requirements
  • Collaborate with software, infrastructure, and security teams to ensure secure deployment and operation of solutions
  • Maintain comprehensive documentation for DevSecOps processes, security controls, and compliance artifacts
  • Support audit, ATO, and risk management processes, including evidence collection and remediation of findings
  • Provide technical support for user acceptance testing, deployment, and ongoing operations of client environments
  • Participate in security assessments, code reviews, and compliance audits as required by contract and SOW
What we offer
What we offer
  • Medical, dental, and vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Devsecops Engineer

Checkmarx is seeking a talented DevSecOps Engineer to join our growing Checkmarx...
Location
Location
India , Pune
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3-5 years of experience as a DevOps, Site Reliability, or Platform Engineer with a strong focus on security (DevSecOps)
  • In-depth experience securing production environments on AWS (or other major clouds) using least privilege, identity federation, VPC security, etc.
  • Proven expertise with Kubernetes and the Operator Framework, including workload security hardening, admission controllers, and custom operators
  • Strong knowledge of CI/CD and infrastructure-as-code tools such as Jenkins, GitHub Actions, CircleCI, AWS CDK, or Terraform
  • Experience building and managing secure containerized environments using Docker, Helm, and Argo CD
  • Proficiency in at least one programming or scripting language (Python, Bash, or Go) with emphasis on automation and secure coding
  • Familiarity with compliance frameworks such as FedRAMP, SOC 2, or ISO 27001, and how they apply to cloud-native architectures
  • Experience integrating security observability and logging systems (e.g., Fluent Bit, ELK, Prometheus, AWS CloudTrail)
  • Strong analytical and problem-solving skills with a security-first mindset
Job Responsibility
Job Responsibility
  • Design, implement, and automate secure, scalable infrastructure for Checkmarx One™ environments, ensuring scale, high availability and compliance with FedRAMP requirements
  • Develop and maintain CI/CD pipelines with a focus on secure software supply chain practices (e.g., SBOMs, signing, verification)
  • Harden Kubernetes-based deployments by building and enforcing security controls using Kubernetes Operator Framework, Network Policies, and Pod Security Standards
  • Integrate and manage observability and security monitoring tools, such as Fluent Bit, ELK, Grafana, Prometheus, and cloud-native security tooling (e.g., AWS GuardDuty, Inspector)
  • Collaborate with application security, product engineering, and compliance teams to define and enforce DevSecOps best practices
  • Conduct threat modeling and risk assessments of infrastructure changes and implement remediation strategies as needed
  • Lead the adoption of secure-by-default templates infrastructure-as-code (AWS CDK, Terraform, etc.) reusable automation
  • Assist in evidence collection and environment preparation for FedRAMP audits and continuous monitoring
What we offer
What we offer
  • What we have to offer
  • Fulltime
Read More
Arrow Right

Infrastructure Engineer – DevSecOps, Compliance & Cloud

We are seeking an Infrastructure Engineer (DevSecOps & Compliance) to build and ...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
Codvo AI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience in Infrastructure, DevOps, or Cloud Engineering
  • Hands-on expertise with AWS/Azure/GCP, Docker/Kubernetes, and Terraform
  • Strong knowledge of CI/CD tools: Jenkins, GitHub Actions, GitLab CI, or Azure DevOps
  • Familiarity with security automation and DevSecOps toolchains (Checkov, Trivy, Aqua, Snyk, OPA)
  • Experience implementing network and endpoint hardening, least-privilege IAM, and secret management
  • Understanding of compliance frameworks (CRA, NIS2, ISO 27001, SOC 2)
  • Excellent scripting ability (Python, Bash, PowerShell, or Go)
Job Responsibility
Job Responsibility
  • Design, deploy, and manage secure CI/CD pipelines for multi-platform software development
  • Implement infrastructure-as-code (IaC) using Terraform, Ansible, or Pulumi with compliance guardrails
  • Integrate security scanners (SAST, SCA, DAST, IaC) into pipelines for continuous compliance
  • Manage SBOM generation, artifact signing, and supply chain security automation
  • Monitor and harden cloud workloads, containers, and Kubernetes clusters against vulnerabilities
  • Establish observability frameworks (logging, monitoring, alerting) with compliance tagging
  • Collaborate with auditors to provide infrastructure evidence for CRA, ISO 27001, and SOC 2 certifications
  • Maintain compliance documentation (architecture, controls, and change logs)
  • Fulltime
Read More
Arrow Right

DevSecOps Engineer

We are looking for a DevSecOps Engineer to support secure software delivery in a...
Location
Location
United States , Palo Alto
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in DevSecOps or security engineering within a SaaS environment
  • Hands-on knowledge of Wiz, including the ability to interpret results and triage security findings effectively
  • Strong familiarity with CI/CD platforms, especially GitHub and CircleCI
  • Practical scripting or coding ability to automate controls and streamline security workflows
  • Experience reviewing vulnerability reports, bug bounty submissions, or similar external security findings
  • Understanding of secure software delivery practices across development, testing, and production stages
  • Working knowledge of Azure Active Directory and its role in enterprise environments
Job Responsibility
Job Responsibility
  • Integrate security practices into development and release processes to promote safer, more reliable software delivery across the engineering lifecycle
  • Review and assess findings generated through Wiz, determining priority, business impact, and appropriate remediation paths
  • Partner with engineering teams to improve security controls within CI/CD workflows, with primary emphasis on GitHub and CircleCI pipelines
  • Create and maintain scripts or lightweight code solutions that automate security checks and connect tools with existing development processes
  • Evaluate vulnerability disclosures and bug bounty submissions, validating reports and identifying severity to support timely response efforts
  • Monitor secure code delivery activities from initial commit through production deployment, helping reduce risk at each stage of the pipeline
  • Act as the primary individual contributor for this function, driving day-to-day execution and advancing DevSecOps practices across the environment
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Devsecops Engineer

As a DevSecOps Engineer, you will be the link between development, operations, a...
Location
Location
Argentina , Buenos Aires
Salary
Salary:
Not provided
valtech.com Logo
Valtech
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Security Engineering, or DevSecOps, preferably in large-scale, customer-facing platforms
  • Deep expertise in automation, cloud-native security, and CI/CD
  • Strong communication skills
  • Comfortable working in global and multicultural teams
  • You have led DevSecOps initiatives in enterprise or high-traffic production environments
  • Strong experience with cloud security (Mostly Azure)
  • Proficient in CI/CD tooling
  • Advanced knowledge of container security and orchestration (Docker, Kubernetes, AKS)
  • Hands-on experience with security scanning tools (Snyk, SonarQube, Trivy, Aqua, Prisma, Checkov, etc.)
  • Implemented monitoring and observability solutions with a security lens (New Relic, Prometheus, Grafana, ELK)
Job Responsibility
Job Responsibility
  • Define and implement enterprise-wide DevSecOps standards, patterns, and guardrails
  • Design and build security automation mechanisms such as secure CI/CD pipelines with integrated SAST, DAST, SCA, IaC scanning, and container security
  • Design and Implement cloud-native security tooling and platforms
  • Lead security reviews, audits and threat modeling for high-impact platforms and projects
  • Guide teams and promote security awareness on secure coding, vulnerability remediation, and cloud security best practices, acting as a Security Subject Matter Expert
  • Automate compliance and governance requirements at scale
  • Participate in and lead security incident lifecycle, including RCA, remediation, postmortem analysis, and resilience improvements
  • Mentor and coach DevOps/DevSecOps engineers across teams
  • Advocate for and implement practices to reduce toil and scale security automation
  • Define and/or conduct regular vulnerability assessments and manage remediation efforts
What we offer
What we offer
  • Flexibility, with remote and hybrid work options
  • Career advancement, with international mobility and professional development programs
  • Learning and development, with access to cutting-edge tools, training and industry experts
  • Fulltime
Read More
Arrow Right

Devsecops Engineer

We are seeking a proactive and detail-oriented IT Support Specialist to join our...
Location
Location
United States , San Francisco Bay Area
Salary
Salary:
150000.00 - 200000.00 USD / Year
arize.com Logo
Arize
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years of experience in IT support or systems administration in a Mac-only, remote-first environment
  • Hands-on experience with: Google Workspaces admin console & SSO
  • Office 365 suite
  • Zoom admin controls
  • Atlassian (Jira, Confluence)
  • GitHub (user access, integrations, permissions)
  • Kandji or similar MDM solutions
  • Bitdefender or similar endpoint protection tools
  • Scripting or programming language
  • Familiarity with compliance frameworks: SOC 2 Type 2, ISO 27001, PCI DSS
Job Responsibility
Job Responsibility
  • Provide Tier 1 and Tier 2 support for a fully remote workforce using MacBooks exclusively
  • Manage and support user accounts, access provisioning, and integrations across Google Workspaces, Office 365, Zoom, Atlassian tools, GitHub
  • Administer and enforce device security and compliance policies through Kandji MDM and Bitdefender
  • Handle troubleshooting of hardware, software, VPN (OpenVPN), and cloud service issues
  • Maintain and document standard operating procedures for IT systems and user support
  • Support audits and evidence gathering for ISO 27001, SOC 2 Type II, and PCI DSS compliance
  • Assist in responding to security questionnaires from prospects and partners as part of the sales process
  • Monitor system logs and alerts to detect and remediate potential threats
  • Ensure compliance with identity and access management protocols across all integrated platforms
  • Assist in tracking and reporting IT and security metrics for internal review and audits
What we offer
What we offer
  • Medical, dental, vision
  • 401(k) plan
  • Unlimited paid time off
  • Generous parental leave plan
  • Mental and wellness support
  • WFH monthly stipend
  • Fulltime
Read More
Arrow Right

Senior DevSecOps Engineer (AWS)

We're looking for a Senior DevSecOps Engineer to join our small, high-impact tea...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
frankieone.com Logo
FrankieOne
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years building and managing secure, highly available web applications and integration services in AWS
  • Experience with containerised services in AWS ECS — setup, security, management, and monitoring
  • A deep understanding of Terraform
  • Strong knowledge of AWS networking primitives
  • Experience building and maintaining CI/CD pipelines using GitHub Actions or similar platforms
  • Strong scripting skills in Python, TypeScript, and Bash
  • Experience with observability and monitoring platforms
  • Extensive experience working with Linux environments
Job Responsibility
Job Responsibility
  • Act as the 2IC to the DevSecOps Lead, with a view to growing into broader leadership responsibilities
  • Drive large initiatives to completion — owning outcomes, not just tasks
  • Collaborate with team members and product owners to solve operational issues and develop automation and enhancements
  • Control and manage end-to-end deployment processes, implementing and maintaining CI/CD practices alongside the development team
  • Work closely with our security function on implementation and remediation — tightening controls, implementing policies, and improving our security posture
  • Continuously improve the service and technology stack
  • Work closely with the DevSecOps Lead, VP of Engineering, and Head of Security
  • Participate in on-call rotation (approximately 1 in every 6 weeks, remunerated)
  • Fulltime
Read More
Arrow Right

Devsecops Engineer

Yotpo is leading the next era of trust and loyalty in eCommerce. With AI-powered...
Location
Location
Bulgaria , Sofia
Salary
Salary:
Not provided
yotpo.com Logo
Yotpo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience as Cloud Security Engineer, DevSecOps, or similar roles within an AWS environment
  • Expertise in managing cloud security controls (IAM, Security Groups/ACLs, WAF, IDS/IPS, load balancing, proxies, VMs, serverless)
  • Experience securing Kubernetes and containerized workloads
  • Proficiency with Python/Bash scripting and automation
  • Experience with Infrastructure-as-Code (IaC), preferably Terraform, and CI/CD tooling (e.g., GitHub Actions)
  • Strong communication skills to influence and guide teams as a cloud security SME
  • Excellent problem-solving skills for high-complexity environments
  • Excellent written and verbal English
Job Responsibility
Job Responsibility
  • Serve as Cloud Security Subject Matter Expert (SME), actively supporting R&D and product teams in developing secure solutions
  • Design secure cloud architectures and implement practical, automated, and scalable controls across services in partnership with DevOps, R&D, and Product teams
  • Continuously assess cloud security posture, identifying gaps and opportunities to reduce risk and adopt best practices
  • Implement, mature, and automate end-to-end cloud security controls across AWS, Kubernetes, CI/CD pipelines, and self-managed systems
  • Lead and improve vulnerability management workflows
  • communicate vulnerabilities and mitigation strategies to stakeholders, balancing business agility and security
  • Own the full lifecycle of security initiatives from proof of concept (POC) and design to deployment and operation while promoting a security-first mindset
  • Maintain and develop the team knowledge base
  • Stay curious and enjoy working with modern security tools and technologies
What we offer
What we offer
  • 25 days paid vacation with add-ons for loyalty
  • regular team buildings and celebrations in and outside the country
  • Additional health insurance package
  • Internal mobility program and refer-a-friend program
  • Managing a fixed monthly budget for social benefits thru Re:Benefit – a flexible online benefits solution
  • Food vouchers
  • E-learning portals and knowledge sharing sessions
  • Company backed Hackathons, Tech conferences, workshops events, etc
  • Stocked kitchen and bar
  • Equity in options
  • Fulltime
Read More
Arrow Right