DevSecOps Engineer - Vulnerability Management

Location

United States

Posted

9 days ago

Salary

$120K - $140K / year

Seniority

Senior

No structured requirement data.

Job Description

DevSecOps Engineer - Vulnerability Management

ZP Group

DevSecOps Engineer - Vulnerability Management Location: United States Job Description: Piper Companies is seeking a DevSecOps Engineer (Vulnerability Management) to join a leading government-focused technology organization. This DevSecOps Engineer (Vulnerability Management) role is ideal for a candidate with a strong DevSecOps mindset and hands-on expertise in AWS GovCloud, Kubernetes (EKS), and modern web applications built with React and NodeJS. The DevSecOps Engineer (Vulnerability Management) role is a long term open ended contract opportunity and allows you to work remote in EST time zone. Responsibilities of the DevSecOps Engineer (Vulnerability Management): - Analyze and triage vulnerability findings, prioritizing remediation based on risk, exploitability, and operational impact. - Partner with engineering teams to remediate vulnerabilities through patching, configuration updates, and secure coding practices across React and NodeJS applications. - Manage and improve container and Kubernetes (EKS) security, including image scanning, RBAC, and workload hardening. - Ensure remediation efforts align with compliance standards such as FedRAMP and NIST 800-53 within AWS GovCloud. - Develop automation to streamline vulnerability remediation and support incident response investigations when needed. Requirements of the DevSecOps Engineer (Vulnerability Management): - Hands-on experience in AWS GovCloud with a strong understanding of cloud security and compliance requirements. - Strong expertise in Kubernetes security (EKS), including RBAC, network policies, and container security best practices. - Experience remediating vulnerabilities in JavaScript-based applications, specifically React and NodeJS. - Familiarity with vulnerability management tools such as Tenable, Qualys, Aqua, or similar platforms. - Ability to communicate security findings clearly and translate them into actionable remediation tasks. Compensation for the DevSecOps Engineer (Vulnerability Management): - $120,000 - $140,000 - Full Comprehensive Benefits: Health, Vision, Dental, PTO, Paid Holiday and Sick Leave if Required by Law. Keywords: Vulnerability management, remediation engineering, DevSecOps, AWS GovCloud, Kubernetes, EKS security, React, NodeJS, FedRAMP, NIST 800-53, container security, vulnerability scanning, CI/CD security, Terraform, CloudFormation, security automation, Tenable, Qualys, Aqua, incident response #LI-AG1 #REMOTE

Related Categories

Related Job Pages

More DevOps Engineer Jobs

AGtec Servicios Informáticos logo

Senior DevSecOps – CI/CD, SAST, SCA, OWASP, CVE, Linux, Git, Docker, Kubernetes, Azure, GCP, AppSec

AGtec Servicios Informáticos

Somos especialistas en el desarrollo de soluciones informáticas para empresas de diversa índole.

DevOps Engineer9 days ago
Full TimeRemoteTeam 51-200Since 1999H1B No Sponsor

• Implementar y optimizar controles de seguridad en pipelines CI/CD • Integrar herramientas SAST, SCA, Secret Detection y Container Scanning • Analizar y priorizar vulnerabilidades según riesgo e impacto • Acompañar a equipos de desarrollo en procesos de remediación • Aplicar hardening en contenedores, servidores y plataformas cloud • Construir dashboards y métricas de seguridad para la toma de decisiones • Participar en iniciativas de automatización y mejora continua • Crear documentación y buenas prácticas para equipos de ingeniería

Chile
Zensar logo

DevOps Team Lead

Zensar

At Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus. Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.

DevOps Engineer9 days ago
Full TimeRemoteTeam 10,001

Role Description - Lead the DevOps/platform squad; own Definition of Done/Ready; track velocity and flag risks. - Own and evolve CI/CD pipelines; implement blue/green, canary, and feature-flag progressive delivery. - Manage AKS clusters: node pool sizing, upgrades, namespace isolation, network policies, cost optimisation. - Author and maintain Terraform modules for all Azure infrastructure; enforce IaC review and state lock. - Design and operate observability stack: Prometheus, per-squad Grafana dashboards, distributed tracing. - Manage Kafka clusters and Azure Service Bus; drive pipeline security automation (SAST, scanning, secrets). - Maintain Elasticsearch cluster health; tune ILM policies for 52M+ invoice documents. - Lead on-call rotation; own post-incident reviews; mentor DevOps engineers and run knowledge-sharing sessions. - Coordinate with software delivery squads on platform enablement and pipeline improvements. Qualifications - 8+ yrs DevOps / Platform Engineering / SRE; 2+ yrs in a team lead or tech lead role. - Expert Kubernetes (CKA or equivalent) and Helm; strong Terraform on Azure or AWS. - Production Kafka operations and Elasticsearch cluster management. - CI/CD pipeline design (Jenkins / GitLab CI / GitHub Actions) and GitOps (ArgoCD or Flux). - Python for operational automation; FCA/PCI-DSS cloud security understanding essential. - Fintech or financial services background advantageous; Azure certs (AZ-104, AZ-400, CKA) a plus. - Nice to have: RabbitMQ; Groovy pipeline scripting; GitHub Actions. Requirements - Technical Leadership: Platform squad oversight; sprint task definition; infrastructure architectural decisions. - Containers & Orchestration: Docker; Kubernetes/AKS (RBAC, HPA/KEDA, PDB); Helm (chart authoring, library charts). - IaC: Terraform (Azure — AKS, PostgreSQL, Service Bus, Key Vault, APIM); Atlantis/Terraform Cloud. - CI/CD & GitOps: Jenkins, GitLab CI, GitHub Actions; ArgoCD/Flux; Trivy, Checkov, OWASP dep-check. - Cloud & Observability: Azure AKS/Service Bus/Monitor; Prometheus + Grafana; OpenTelemetry; ELK/OpenSearch. - Messaging & Security: Kafka; RabbitMQ; Azure Key Vault / HashiCorp Vault; mTLS; Trivy/Snyk; FCA/PCI-DSS. - Scripting: Python, Bash, Groovy — pipelines, runbooks, automated incident response. - People: Mentoring/line management of 3–6 DevOps engineers; 1:1s, onboarding, performance reviews. Benefits - We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. - We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace.

India
Gcore logo

DevOps Engineer

Gcore

Powerful edge and cloud solutions for media business and the entertainment industry

DevOps Engineer9 days ago
Full TimeRemoteTeam 201-500H1B No Sponsor

• Build and operate CI/CD pipelines in GitLab (pipelines-as-code, runners, templates, caching, artifact strategies). • Manage container platforms with Kubernetes (deployments, ingress, services, HPA, troubleshooting). • Maintain container build and runtime workflows with Docker (image optimization, multi-stage builds, registries). • Embed DevSecOps practices into delivery: SAST/DAST/dependency scanning, secrets scanning policy gates, approvals, compliance-friendly pipelines hardening images and runtime controls. • Improve reliability and performance: monitoring/alerting, log aggregation, incident response capacity planning, scaling, resilience improvements. • Collaborate on architecture decisions and document standards/runbooks.

Cyprus
IRIUM logo

Especialista en Azure, Terraform y DevOps

IRIUM

Líderes en gestión de servicios integrados de infraestructuras y plataformas IT.

DevOps Engineer9 days ago
Full TimeRemoteTeam 501-1,000Since 2002H1B No Sponsor

• Diseñar, implementar y operar infraestructuras cloud seguras, escalables y automatizadas.

Spain
€32K - €38K / year
Job Closed