Enable job alerts via email!

AWS DevSecOps Engineer

Softthink Solutions

United States

Remote

USD 120,000 - 180,000

Full time

9 days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company is seeking an experienced AWS DevOps Engineer focused on DevSecOps practices. This remote position requires hands-on expertise in building secure and scalable infrastructure on AWS, integrating security throughout the DevOps lifecycle, and maintaining compliance with industry best practices. Ideal candidates will have extensive experience and strong qualifications in AWS services and automation tools.

Qualifications

Minimum 10 years of IT experience with 5+ in AWS-based DevOps.
3 years of experience in DevSecOps.
Proficiency in Python, Bash, or PowerShell for automation.

Responsibilities

Design, implement, and maintain secure AWS infrastructure.
Automate infrastructure provisioning using Terraform and Ansible.
Embed security controls into the DevOps lifecycle.

Skills

AWS services proficiency

DevSecOps practices

Infrastructure automation

Containerization with Docker

CI/CD pipeline development

Education

Bachelor's degree in Computer Science or Information Technology

Tools

SonarQube

Terraform

Jenkins

Kubernetes

AWS CloudFormation

Overview
We are seeking an experienced AWS DevOps Engineer with a strong focus on DevSecOps practices and a minimum of 10 years in IT. This role requires hands-on expertise in building secure, scalable, and highly available infrastructure on AWS. You will also be responsible for integrating security into every phase of the DevOps lifecycle and ensuring compliance with industry best practices.
Key Responsibilities

Design, implement, and maintain secure, scalable, and cost-efficient AWS infrastructure using services such as EC2, S3, Lambda, RDS, DynamoDB, and VPC.
Automate infrastructure provisioning and configuration using tools like Terraform, AWS CloudFormation, and Ansible.
Develop, deploy, and maintain CI/CD pipelines using tools like Jenkins, GitLab CI/CD, or AWS CodePipeline, incorporating security and quality gates.
Embed security controls into the DevOps lifecycle by integrating tools like SonarQube, Checkmarx, or Snyk for static application security testing (SAST) and dependency scanning.
Set up and manage monitoring tools such as AWS CloudWatch, Prometheus, Grafana, and ELK Stack for real-time insights into system performance, availability, and security.
Manage containerized applications using Docker and orchestrate them with Kubernetes (EKS), Amazon ECS, or Fargate.
Implement AWS security best practices, including IAM policies, Secrets Manager, Security Hub, WAF, and GuardDuty, while ensuring compliance with industry standards.
Use SonarQube to enforce coding standards, identify vulnerabilities, and ensure high-quality code across development teams.
Incorporate automated testing tools (e.g., Selenium, Postman, or JMeter) into pipelines to ensure code and application stability.
Monitor and optimize AWS resource usage to ensure cost efficiency while maintaining performance.
Develop and maintain disaster recovery (DR) plans and backup strategies to ensure business continuity and safeguard data integrity.
Work closely with development, operations, and security teams to ensure seamless integration and delivery of solutions.

Required Qualifications

Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience).
Minimum 10 years of IT experience with 5+ years in AWS-based DevOps and at least 3 years in DevSecOps.
Proficiency with AWS services, including EC2, S3, RDS, Lambda, DynamoDB, VPC, and CloudFront.
Strong hands-on experience with tools like SonarQube, Snyk, Checkmarx, or OWASP ZAP for DevSecOps implementation.
Proven experience with Terraform, AWS CloudFormation, or Ansible for automating infrastructure provisioning and management.
In-depth knowledge of Jenkins, GitLab CI/CD, or AWS CodePipeline for building and maintaining CI/CD pipelines.
Expertise in Docker and Kubernetes (EKS, ECS, or Fargate) for containerized applications.
Proficiency in Python, Bash, or PowerShell for automating tasks and managing workflows.
Experience with AWS CloudWatch, Prometheus, Grafana, and ELK stack for monitoring and alerting.
Deep knowledge of IAM, WAF, GuardDuty, and AWS Security Hub for securing applications and infrastructure.
Familiarity with industry standards such as PCI DSS, HIPAA, FedRAMP, or GDPR.
Expertise in Git and repository management tools like GitHub or Bitbucket.

Preferred Qualifications

AWS certifications (e.g., AWS Certified DevOps Engineer – Professional, AWS Certified Solutions Architect – Professional).
Familiarity with serverless architecture (e.g., AWS Lambda, API Gateway).
Experience with advanced security practices, including role-based access control (RBAC) and identity federation.
Hands-on experience with advanced networking concepts such as Transit Gateway, Direct Connect, and VPN.
Exposure to hybrid or multi-cloud environments.

This is a remote position.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.