Lead DevSecOps Engineer

We are seeking a seasoned Lead DevSecOps Engineer to join our client's team, a top real estate data analytics firm in Arlington, VA*. In this leadership role, you will be pivotal in embedding security within their DevOps processes, ensuring their systems are secure, scalable, and reliable. You will lead cross-functional teams to enhance their security measures and optimize their development and deployment workflows, driving innovation and excellence in their security practices.

Responsibilities

• Design and implement infrastructure to support application development and deployment.
• Automate security controls, data protection, and vulnerability management systems in deployment pipelines.
• Continuously monitor the security of applications and infrastructure, identify potential vulnerabilities, and coordinate remediation efforts.
• Participate in incident response and forensic analysis of cybersecurity events.
• Conduct regular security assessments, audits, and compliance checks to ensure adherence to security standards.
• Collaborate with software engineers, system administrators, and other team members to identify and implement efficient and reliable solutions.
• Provide training and awareness to development and operations teams on secure coding practices and threat mitigation.
• Document and communicate security procedures, policies, and how they align with the company's business processes.
• Stay updated on new security technologies and integrate them into the security architecture design where applicable.

Qualifications

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Minimum of 8 years of experience in Cybersecurity or DevOps with a strong emphasis on cloud security aspects.
• Proficiency in cloud platforms (AWS, Azure, GCP), containerization (Docker, Kubernetes), and CI/CD tools (Jenkins, GitLab CI).
• In-depth knowledge of security best practices, tools, and frameworks (e.g., OWASP, NIST).
• Experience with automation tools and scripting languages (e.g., Python, Bash).
• Strong analytical and problem-solving skills.
• Excellent verbal and written communication skills.
• Relevant certifications such as CISSP, CISM, or AWS Certified Security Specialty are a plus.

*This is a hybrid role (3 days onsite, 2 days remote) out of the client's office in the Arlington, VA area.