DevSecOps Engineer
Description:
SAIC, a leading provider of systems development & deployment, targeting & intelligence analysis, systems engineering & integration, and training capabilities and solutions for the Intelligence Community, is seeking creative and dedicated professionals to fulfill their career goals and objectives while delivering mission excellence on programs of national importance.
We are seeking a highly skilled and motivated DevSecOps Engineer to join our team. As a DevSecOps Engineer, you will integrate security practices into our DevOps processes, ensuring the development and deployment of secure applications. The ideal candidate will possess a strong background in both security and DevOps methodologies, with a passion for automating security processes and enhancing the overall security posture of our infrastructure and applications. This position is located in Reston, VA.
Job Responsibilities:
Integrate security into the CI/CD pipeline, automating security controls and ensuring security is embedded throughout the development lifecycle.
Collaborate with development, operations, and security teams to define and implement security best practices and standards.
Conduct security assessments, vulnerability analysis, and penetration testing to identify and mitigate security risks.
Develop and maintain secure infrastructure as code (IaC) scripts using tools like Terraform, Ansible, or CloudFormation.
Implement and manage security tools and technologies such as SIEMs, IDS/IPS, firewalls, and endpoint protection.
Monitor and respond to security incidents, performing root cause analysis and implementing corrective measures.
Educate and train development and operations teams on secure coding practices and security tooling.
Stay up to date with the latest security threats, trends, and technologies, and proactively address potential risks.
Create and maintain documentation related to security policies, procedures, and standards.
Participate in security audits and compliance initiatives to ensure adherence to industry regulations and standards.