• Build, mentor, and manage a globally distributed team of application security engineers, establishing career development paths and fostering a collaborative security culture • Develop and execute the application security strategy, defining metrics and KPIs while partnering with leadership to communicate security posture to executives • Oversee application security initiatives across all products, including secure SDLC practices, vulnerability management, threat modeling, architecture reviews, and bug bounty programs • Define tooling strategy for Application Security, driving automation to achieve high remediation coverage while maintaining development velocity • Partner with engineering, product, compliance, and other security teams to embed security throughout the organization, delivering training and acting as a trusted advisor on security architecture

Role Description The DevSecOps Engineer, Mid provides engineering leadership to design, secure, and automate delivery pipelines and infrastructure that support mission‑critical applications. This role owns CI/CD workflows that integrate build, test, and security controls so deployments to cloud and on‑premises environments are consistent, repeatable, and compliant. The DevSecOps Engineer, Mid designs infrastructure‑as‑code patterns and observability practices to improve resilience and performance, partnering with development, cloud, and security teams to standardize toolchains and promote DevSecOps best practices across the organization. - Design and implement CI/CD pipelines that automate build, test, security scanning, and deployment activities for mission‑critical systems across multiple environments. - Develop and maintain infrastructure‑as‑code templates and automation scripts to provision and configure cloud and on‑premises environments in a consistent, scalable manner. - Embed security baselines, policy checks, and monitoring into pipelines to enforce DevSecOps practices, ensuring vulnerabilities are identified and addressed early in the lifecycle. - Collaborate with application, cloud, and security teams to evaluate, select, and standardize DevSecOps toolchains that support an “as‑a‑Service” delivery model. - Support auto‑provisioning of infrastructure components—including compute, storage, and networks—leveraging automation tools and software‑defined practices. - Monitor pipeline and platform health, troubleshoot build and deployment issues, and use metrics and logs to drive continuous improvement in reliability and performance. - Contribute to documentation of DevSecOps standards, runbooks, and best practices, and provide coaching to teams adopting pipeline and secure‑coding standards. Qualifications - Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent relevant work experience. - 4–7+ years of experience in DevSecOps, DevOps, site reliability engineering, or platform engineering with strong exposure to security controls and automation. - Solid understanding of infrastructure components, cloud capabilities, and software‑defined practices, including auto‑provisioning and configuration management. - Hands‑on experience with Agile and DevSecOps methodologies, CI/CD tooling, and automation used to design and deliver scalable, cost‑effective solutions in an “as‑a‑Service” model. - Strong problem‑solving, troubleshooting, communication, and interpersonal skills, with the ability to work effectively across application, cloud, and security teams. - Ability to obtain and maintain a Public Trust investigation and U.S. citizenship as required for this remote federal IT position. Requirements - Experience leading DevSecOps enablement for multiple teams, including coaching on pipeline standards, secure coding practices, and toolchain adoption. - Professional DevOps or cloud‑security certification from a major provider (for example, AWS, Azure, or other leading cloud platforms). - Familiarity with federal or other highly regulated environments, including working with SLAs and compliance expectations. - Experience with scripting languages and modern cloud engineering practices such as infrastructure‑as‑code, continuous integration and delivery, and architecture reviews. Benefits - Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. - The compensation displayed for this role is a general guideline based on these factors and is unique to each role. - Monetary compensation is one component of ASM's overall compensation and benefits package for employees. Company Description It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. - All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. - All decisions on employment are made to abide by the principle of equal employment.

• Lead and oversee day-to-day regional security operations • Develop and execute regional goals aligned with Global Physical Security (GPS) initiatives • Drive and implement regional security plans to address threats and vulnerability • Design and deliver training to enhance preparedness and employee awareness • Oversee and conduct investigations into threats, incidents, and workplace violence cases • Monitor regional threats/disruptions and implement mitigation strategies • Provide guidance on security standards, practices, and programs to support global initiatives • Collaborate internally and externally to resolve complex regional security issues

Role Description The Security Coordinator is responsible for the review of background check reports, security clearance packets, and other security functions for prospective employees. - Sending and reviewing background checks. - Updating records as appropriate to include background check statuses, clearance statuses, and uploading clearances into internal database. - Answering GWFS main/security phone line. - Supporting security staff in badging and other HQ requirements. - Conducting daily updates for reporting purposes and to control/manage candidate pipeline. - Uploading all necessary documentation onto various portal websites for review/submission. - Checking clearance status in DISS for potential candidates given from recruiting. - Coordinating with the recruiting team to ensure the accuracy of documents collected. - Administering and troubleshooting other databases, updating websites/SharePoint sites; running reports; performing database clean up tasks. - Other administrative tasks as needed. Qualifications - Minimum three (3) years of experience in an administrative role. - Proficient in Microsoft Office. - Highly detail oriented/organized. - Ability to multi-task. - Excellent interpersonal and communication skills. - Ability to remain calm and professional in stressful situations. - Ability to work independently and as part of a team. Requirements - DoD Secret Clearance preferred. - Will be required to submit and hold DOD clearance. - Associate degree or more. Benefits - Pay Range: $22.00 / hour. - This is a temporary position (up to 90 days) with the potential of becoming permanent. Work Environment - Employees may be exposed to extreme cold or hot weather conditions, fumes, or airborne particles, toxic or caustic chemicals, and loud noise. Physical Requirements - Employees may be required to remain in a stationary position, stand, push, pull, climb, kneel, crawl, balance, squat, bend, and reach during shifts. - Employees may be required to use gear to move items around, including, but not limited to, carts and dollies. - Employees may also be occasionally required to lift and/or move up to 49 pounds.