Security DevSecOps Specialist
Job Title: Security DevSecOps Specialist
Location: Remote
Duration/Term: Long Term Contract
Job Description
We are seeking a skilled and motivated DevSecOps Engineer to join our team and contribute to the security, administration, and efficiency of our infrastructure. The ideal candidate will possess expertise in Linux system internals, container security, DevSecOps tools, and automation scripting while ensuring compliance with regulatory standards such as FedRAMP or BSI IT-Grundschutz. With a focus on maintaining secure, scalable environments, this role will require strong communication skills to translate technical concepts effectively across stakeholders.
Key Responsibilities
- Manage and maintain Linux systems with a focus on internals, access control, package/service management, and log analysis.
- Ensure compliance with standards like FedRAMP, BSI IT-Grundschutz, or similar regulatory frameworks.
- Utilize DevSecOps tools and practices, including Infrastructure as Code (Terraform), configuration management (Ansible), and CI/CD pipelines (GitLab CI, Pipelines), to streamline deployments and operations.
- Develop and maintain scripts using Python, Bash, or other programming languages for automation.
- Ensure container security and deploy applications using orchestration platforms such as Docker and Kubernetes.
- Produce clear and detailed documentation while effectively communicating technical concepts across diverse stakeholders.
- Support security audits by implementing remediation plans and maintaining alignment with security benchmarks like CIS Controls or DISA STIGs.
- Proactively monitor and secure infrastructure to enhance operational resilience and security.
Qualifications
Must-Have:
- 4+ years of experience in Linux system administration, security engineering, or DevSecOps.
- Proficiency in Linux system internals, including access control, package/service management, and log analysis.
- Experience with compliance standards such as FedRAMP or BSI IT-Grundschutz.
- Expertise in DevSecOps tools: Infrastructure-as-Code (Terraform), configuration management (Ansible), and CI/CD tools (GitLab CI, Pipelines).
- Automation scripting experience with Python, Bash, or similar languages.
- Strong understanding of container security and orchestration platforms like Docker and Kubernetes.
- Proven ability to create clear documentation and effectively communicate technical concepts to stakeholders.
Nice-to-Have:
- Experience supporting security audits and implementing remediation measures.
- Familiarity with security benchmarks such as CIS Controls or DISA STIGs.
- Relevant security certifications, including Linux+, GSEC, OSCP, or CISSP.
Key Skills
Linux system internals, security engineering, Terraform, Ansible, CI/CD pipelines (GitLab CI, Pipelines), container security (Docker, Kubernetes), Python, Bash, FedRAMP compliance, BSI IT-Grundschutz, security benchmarks (CIS Controls, DISA STIGs), documentation, communication skills, security audits.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
