JOBSEARCHER
SIGN IN

DevSecOps Engineer – Security Automation & Pipeline Development (Remote)

ARCHIVED
Stage 4 SolutionsRemoteJune 17th, 2026

We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.

DevSecOps Engineer Security Automation & Pipeline Development (Remote)We are looking for a DevSecOps Engineer for a large, global B2B high-tech company. In this role, you will upgrade vulnerable containers in collaboration with the DevSecOps team, testing and promoting updates to production. You apply cloud hardening and maintain Terraform/Ansible code to enforce security settings across AWS services and Kubernetes nodes per STIG and CIS benchmarks.This is a 6-month contract (Extension possible), 40 hours per week, remote role in the US.This is a W2 employee of Stage 4 Solutions. Health benefits and 401K are offered.ResponsibilitiesUpgrade vulnerable containers in collaboration with the DevSecOps team, testing and promoting updates to production. Apply cloud hardening and maintain Terraform/Ansible code to enforce security settings across AWS services and Kubernetes nodes per STIG and CIS benchmarks. Design and maintain automated container patching pipelines, including base image refresh, rebuild triggers, and automated PR generation. Build and maintain vulnerability scanning workflows using Grype and/or Trivy as pipeline gates blocking promotion of images exceeding CVE thresholds. Build and manage Argo Workflows orchestrating end-to-end patch automation from scanning through remediation, rebuild, and deployment. Write Python-based tooling supporting pipeline logic, scan result parsing, notification routing, and patch orchestration. Own GitHub-based development workflow: branch strategy, PR creation/review, code quality standards, and merge gate enforcement. Conduct code reviews, ensuring changes meet security, quality, and operational standards before production promotion. Maintain production readiness practices, including testing, peer review, rollback procedures, and deployment validation. Analyze Kubernetes IAM configurations and RBAC policies to identify overprivileged roles, misconfigurations, and deviations from least-privilege principles. Review and harden Kubernetes network setup and segmentation, including network policies, namespace isolation, and inter-service communication controls. Audit certificate usage across the cluster and pipeline, ensuring proper issuance, validity, and automated rotation; verify secrets are rotated on schedule and not hardcoded or overexposed. Scan codebases, repos, and infrastructure configs for exposed secrets using open source tools such as Hedgehog and equivalent secret detection utilities. Scan S3 buckets for exposed secrets and sensitive data, remediating findings and implementing preventive controls. Review network, WAF, and Istio logs to map existing traffic flows and service communication patterns in preparation for network segmentation and a deny-by-default lockdown posture. Develop automations for WAF rule creation and tuning based on observed traffic patterns and threat intelligence. Leverage Claude to accelerate security research, organize remediation plans, and develop Python-based tooling for non-production-impacting automation and analysis tasks.RequirementsCore Platform & Cloud AWS EKS, Kubernetes, Terraform, Ansible, ArgoCD, Argo Workflows, GitLab, GitHub Security & Compliance FedRAMP, STIG, CIS Benchmarks, RBAC, IAM, Okta/OIDC, SAML, WAF, Istio, Network Segmentation, Certificate Management, Secrets Rotation, Least Privilege Scanning & Tooling Grype, Anchore, Hedgehog, S3 Scanning, Vulnerability Scanning, Secrets Detection Development Python, CI/CD Pipelines, Code Review, PR Management, Patch Automation AI Claude, AI-Assisted Coding Bachelor s degreePlease submit your resume to our network at http://www.stage4solutions.com/careers/ (apply to the DevSecOps Engineer Security Automation & Pipeline Development (Remote) role).Please feel free to forward this job post to others you think may be interested.Stage 4 Solutions is an equal-opportunity employer. We celebrate diversity and are committed to providing employees with an inclusive environment that is free of discrimination and harassment. All employment decisions are based on the job requirements and candidates qualifications, without regard to race, color, religion/belief, national origin, gender identity, age, disability, marital status, genetic information, or other applicable legally protected characteristics.Compensation: $90/hr - $94.29/hr.