DevSecOps Engineer - BruckEdwards, Inc

Key Responsibilities

• Design, implement, and maintain secure CI/CD pipelines using Git, Jenkins, or GitHub Actions.
• Automate infrastructure provisioning and configuration with AWS CloudFormation, Terraform, or similar tools.
• Containerize applications with Docker and orchestrate them using Kubernetes, ensuring secure networking and access controls.
• Integrate security scanning tools (Snyk, Trivy, OWASP ZAP) into the build process to detect vulnerabilities early.
• Collaborate with development, QA, and operations teams to embed security best practices throughout the SDLC.
• Monitor and respond to security incidents, perform root‑cause analysis, and implement remediation actions.

Requirements

• Strong understanding of DevSecOps principles and practices.
• Hands‑on experience with AWS services (EC2, S3, IAM, VPC) and infrastructure as code.
• Proficiency in containerization (Docker) and orchestration (Kubernetes).
• Familiarity with security tools for static, dynamic, and dependency scanning.
• Excellent problem‑solving skills and a proactive approach to security.