DevSecOps Engineer / Cloud Engineer
Richmond, VA | Onsite (Mon-Fri)
We are seeking a DevSecOps Engineer to lead the design and implementation of secure, automated delivery pipelines and cloud infrastructure as part of a large-scale migration from on‑premises systems to AWS. This role partners across multiple IT teams to transition from manual processes to modern, pipeline-driven delivery while ensuring all workloads meet strict security and compliance standards (CJIS, COV, FBI).
Key Responsibilities
- Design and implement CI/CD pipelines using tools such as AWS CodePipeline, GitHub Actions, GitLab CI, or Jenkins
- Integrate security controls (SAST, DAST, IaC scanning, secret scanning, dependency scanning) into pipelines
- Build containerized deployment pipelines (ECS/Fargate) with portability to Kubernetes
- Develop reusable pipeline templates and automate testing, deployments, and rollback strategies
- Implement secrets management and enforce policy-as-code and compliance checks
- Automate infrastructure using Terraform, CloudFormation, and Ansible
- Convert legacy environments to Infrastructure as Code and enable self-service provisioning
- Establish monitoring, alerting, and logging pipelines using industry-standard tools
- Support identity and access integration (Okta, Azure AD, etc.) within pipelines
- Apply automation and AI-driven insights to improve security, reliability, and operational efficiency
Qualifications
- Strong experience designing and building CI/CD pipelines across multiple toolsets
- Hands-on experience with AWS services and cloud-native architectures
- Proficiency in Terraform, CloudFormation, and Ansible
- Experience integrating security scanning and compliance controls into pipelines
- Knowledge of secrets management and identity/access integration
- Experience automating infrastructure provisioning and configuration
- Familiarity with CJIS, COV, or similar regulatory frameworks
