Title: Cloud DevSecOps Engineer
Location: Ridley Park, PA
Duration: 6+ Months
Job Description
Digital Analytics and System Health software engineering team is seeking a talented and highly motivated Cloud DevSecOps Engineer to join our team in Ridley Park, Pennsylvania, Hazelwood, Missouri, Plano, Texas or Oklahoma City, Oklahoma.
The ideal candidate will possess a strong foundation and solid understanding of DevOps principles, cloud computing, and automation practices with a passion for technology and the ability to work collaboratively in a fast-paced environment. In this role, you will integrate security into every phase of the software development lifecycle, automate infrastructure and security controls, and enable faster, safer delivery of software across multiple cloud environments, ensuring reliability and scalability of our capabilities. As part of the team, you will execute a wide range of complex tasks leveraging cutting-edge software technologies that define the future of digital and analytics solutions for our customers.
We are all innovators on a mission to connect, protect, explore, and inspire. From the seabed to outer space, you'll learn and grow, contributing to work that shapes the world. Find your future with us.
Position Responsibilities
Design, implement, and operate secure, scalable cloud architectures across cloud providers (e.g., AWS, Azure, and/or GCP), optimizing reliability, performance, and cost.
Develop and maintain cloud-native solutions and services following architectural and security best practices.
Build and manage Infrastructure as Code (IaC) using Terraform, CloudFormation, ARM, or equivalent, including testing, configuration management, and version control.
Implement identity and access management, zero-trust principles, automated compliance checks, and auditable governance across all environments.
Harden and operate containerization and orchestration (Docker, Kubernetes), including image hardening, runtime security, network policies, RBAC, and secure service mesh configurations.
Enforce secure software delivery pipelines with automated vulnerability management, patching workflows, secret management, software bill of material generation, and secure artifact repositories.
Enable resilient deployment strategies (blue/green, canary, automated rollback) with secure rollback procedures and high-availability considerations.
Monitor, detect, and respond to security events leveraging centralized logging, alerting, threat detection, and incident response runbooks.
Partner with development teams on threat modeling, risk assessments, and architecture reviews to translate security requirements into actionable tasks and deliverables.
Drive continuous improvement of cloud security posture with industry standards (e.g., NIST, CIS, OWASP) and implement policy-as-code and automation to raise the security baseline.
Liaise with customers and stakeholders to gather requirements, provide guidance, and propose optimized cloud solutions.
Contribute to platform and application security reviews and design discussions.
Document architectures, decisions, and operational runbooks
Basic Qualifications (Required Skills/Experience)
5+ years of experience in cloud engineering, DevOps, or security-focused roles with hands-on cloud experience with relevant certifications.
Proficiency with at least one major cloud provider (AWS, Azure, or GCP) and familiarity with multi-cloud strategies.
Strong programming and scripting skills (e.g., Python, Bash, Go/Java/JavaScript).
Excellent collaboration and communication skills with the ability to collaborate effectively with cross-functional teams and stakeholders.
Experience with IaC and automated testing of infrastructure (e.g., Terraform, CloudFormation, ARM).
Understanding of networking concepts, security protocols, and best practices in cloud environments.
Proficiency with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI), version control (Git), and automation frameworks.
Deep knowledge of DevSecOps practices (SAST/DAST, container security, image scanning, secret management, software bill of material, policy as code).
Hands-on experience with containers and orchestration (Docker, Kubernetes) and associated security controls.
Familiarity with security standards and compliance frameworks (NIST, CIS Benchmarks, OWASP) and risk-based security practices.
Preferred Qualifications (Desired Skills/Experience)
Bachelor's degree in Computer Science or a related field, or equivalent practical experience.
Cloud certifications (e.g., AWS Certified DevOps Engineer, Microsoft Certified: Azure DevOps Engineer Expert, CompTIA Cloud+, Certified Cloud Security Professional) are a plus.
1+ years of experience in the Aerospace industry
Experience in government or military programs and regulatory/compliance familiarity.
