DevSecOps Engineer

Job TitleDevSecOps EngineerLocation- Fort Mills, SC Job SummaryWe are seeking a DevSecOps Engineer to embed security throughout the software development lifecycle. You will work closely with development, operations, and security teams to automate security controls, strengthen CI/CD pipelines, and ensure scalable, compliant, and resilient systems in cloud and hybrid environments.Key ResponsibilitiesIntegrate security practices into CI/CD pipelines (shift-left security)Design, implement, and maintain secure cloud infrastructure (AWS, Azure, GCP)Automate security testing (SAST, DAST, SCA, IaC scanning, container scanning)Manage secrets, keys, and certificates securely (Vault, KMS, Secrets Manager)Implement and monitor security controls for containers and KubernetesPerform threat modeling, risk assessments, and security architecture reviewsRespond to and investigate security incidents and vulnerabilitiesEnsure compliance with standards (ISO 27001, SOC 2, PCI-DSS, HIPAA, etc.)Collaborate with developers to improve secure coding practicesMaintain logging, monitoring, and alerting for security eventsRequired Skills & QualificationsStrong experience with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, Azure DevOps)Proficiency in cloud platforms (AWS, Azure, or GCP)Infrastructure as Code (Terraform, CloudFormation, ARM)Containerization and orchestration (Docker, Kubernetes)Security tools: SAST/DAST, dependency scanning, container security toolsScripting/programming (Python, Bash, Go, or similar)Solid understanding of networking, IAM, and security fundamentalsExperience with Linux systemsPreferred / Nice-to-HaveExperience with Zero Trust architectureKnowledge of OWASP Top 10 and secure coding standardsFamiliarity with SIEM/SOAR toolsSecurity certifications (e.g., CISSP, CISM, CCSP, AWS Security Specialty)Experience in regulated environments