We're looking for an experienced DevSecOps engineer be part of a major government agency to lead the design, automation, and security hardening of cloud infrastructure for large-scale, mission-critical systems. This role is ideal for someone who thrives in secure cloud environments, enjoys building automated workflows, and wants to drive cloud security practices end-to-end.
You will work closely with engineering and operations teams to create robust, scalable, and fully automated cloud infrastructure that meets stringent security and compliance standards.
Key Responsibilities:
Cloud Security Engineering:
- Design, implement, and maintain cloud security frameworks, guardrails, and compliance controls.
- Continuously monitor, audit, and harden cloud resources to meet security benchmarks.
Automation & Infrastructure as Code:
- Build and maintain Terraform modules for automated provisioning and configuration of cloud resources.
- Automate recurring cloud operations such as IP whitelisting, WAF rule updates, routing changes, and policy enforcement.
- Develop secure CI/CD pipelines and integrate security checks into the development lifecycle.
Operations & Governance:
- Implement and manage a suite of cloud security tools (native and third-party).
- Conduct periodic reviews of cloud policies to proactively address emerging threats.
- Work with cross-functional teams to ensure infrastructure remains secure, resilient, and compliant.
Qualifications:
- Strong hands-on experience in DevSecOps, cloud security, and automated cloud operations.
- Proficiency in AWS, including CLI operations and deep familiarity with core cloud services.
- Ability to write clean, modular Terraform code for infrastructure automation.
- Experience automating updates for cloud resources (e.g., IP ranges, WAF/API Gateway rules, Route 53 configurations).
- Solid understanding of cloud security best practices, risk management, and compliance frameworks.
- Strong troubleshooting and problem-solving skills in distributed cloud environments.
Any experiences in the following will be highly regarded:
- Experience supporting government or regulated-sector systems.
- Familiarity with IM8 or similar compliance standards.
- AWS or DevSecOps certifications (Security Specialty, Solutions Architect, SysOps, etc.).
- Knowledge of Docker, Kubernetes, and enterprise CI/CD tooling.
You'll be building and securing cloud environments that support high-impact services. This is a chance to influence cloud security posture at scale, drive automation across complex systems, and help shape secure engineering practices in a demanding, compliance-driven environment.
