Sr AWS DevSecOps Engineer

What success looks like in this role:

• DevSecOps Pipeline Design & Automation: Design and implement secure, automated CI/CD pipelines in AWS using tools like AWS CodePipeline, Jenkins, GitLab CI, and other DevOps tools while ensuring security is built into every phase of development, from code to production.
• Cloud Infrastructure Security: Architect, configure, and maintain secure AWS infrastructure using best practices in identity and access management (IAM), networking, encryption, and more, with a focus on risk mitigation and compliance.
• Security Integration: Integrate security tools and practices into the DevOps lifecycle, including code scanning, vulnerability assessments, compliance checks, and automated security testing.
• Security Monitoring & Incident Response: Continuously monitor AWS environments for security vulnerabilities and performance issues. Implement proactive monitoring tools (e.g., AWS CloudTrail, GuardDuty, AWS Security Hub) and lead incident response efforts to mitigate threats.
• Automation & Infrastructure as Code (IaC): Leverage tools like Terraform, AWS CloudFormation, and the AWS CLI to automate the deployment and management of secure infrastructure.
• Risk Management & Compliance: Ensure that AWS-based applications and systems adhere to industry standards and compliance frameworks (e.g., SOC 2, GDPR, PCI-DSS) by implementing and maintaining security controls and audits.
• Collaboration & Mentoring: Work closely with development, security, and operations teams to ensure seamless integration of security into the DevOps pipeline. Mentor and guide junior engineers on best practices for security in DevOps environments.
• Continuous Improvement: Stay up-to-date with the latest trends, tools, and best practices in DevSecOps, AWS, and cloud security. Proactively recommend improvements to systems and processes for better security posture, performance, and cost-efficiency.
• Documentation & Reporting: Maintain detailed documentation for DevSecOps processes, including security configurations, vulnerability reports, and incident responses.

#LI-BN1

You will be successful in this role if you have:

Skills & Qualifications:

• Experience: 8+ years of hands-on experience in DevOps, with at least 5 years focusing on AWS cloud environments and security integration in the DevOps lifecycle.
• AWS Services Expertise: Strong knowledge of core AWS services, including EC2, VPC, IAM, Lambda, S3, RDS, and CloudWatch. Experience with security-focused AWS services such as AWS Security Hub, GuardDuty, and KMS is required.
• DevOps Tools: Proficiency in DevOps tools for CI/CD pipelines, including AWS CodePipeline, Jenkins, GitLab CI, or similar. Experience with containerization and orchestration tools (e.g., Docker, Kubernetes, Amazon EKS).
• Security Tools & Practices: Experience with automated security tools such as Snyk, Checkmarx, SonarQube, or others for static and dynamic code analysis, as well as infrastructure scanning tools like AWS Config and Prisma Cloud.
• Infrastructure as Code (IaC): Hands-on experience using Terraform, AWS CloudFormation, or similar IaC tools to automate secure cloud infrastructure.
• Compliance & Risk Management: Expertise in implementing security controls, vulnerability management, and compliance frameworks (SOC 2, ISO 27001, GDPR, PCI-DSS, etc.) in cloud environments.
• Security Architecture & Practices: Strong understanding of security best practices including encryption (at rest and in transit), identity and access management (IAM), network segmentation, and secure coding practices.
• Scripting & Automation: Proficiency in scripting languages (Python, Bash, or PowerShell) for automation of security and operational tasks.
• Monitoring & Logging: Experience with AWS security and monitoring tools like CloudWatch, CloudTrail, GuardDuty, and AWS Config, as well as third-party monitoring solutions.
• Incident Response & Forensics: Ability to respond to and investigate security incidents, conduct root cause analysis, and implement preventive measures.
• Certifications: AWS Certified DevOps Engineer – Professional, AWS Certified Security Specialty, or similar certifications are highly preferred.
• Communication Skills: Strong written and verbal communication skills, with the ability to explain security concepts to non-technical stakeholders.

Preferred Qualifications:

• Familiarity with container security and microservices architectures.
• Knowledge of serverless security practices (AWS Lambda, API Gateway, etc.).
• Experience with multi-cloud or hybrid cloud environments.
• Familiarity with compliance auditing tools like AWS Audit Manager.
• Exposure to security testing frameworks such as OWASP, SANS, or NIST.

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, blood type, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein, or cannot otherwise complete your expression of interest, without additional assistance and would like to discuss a request for reasonable accommodation, please contact our Global Recruiting organization at [email protected] or alternatively Toll Free: 888-560-1782 (Prompt 4).  US job seekers can find more information about Unisys’  EEO commitment here.