Sr. DevSecOps Engineer

At Credence, we support our clients’ mission-critical needs, powered by technology. We provide cutting-edge solutions, including AI/ML, enterprise modernization, and advanced intelligence capabilities, to the largest defense and health federal organizations. Through partnership and trust, we increase mission success for war-fighters and secure our nation for a better future.

We are privately held, are repeatedly recognized as a top place to work, and have been on the Inc. 5000 Fastest Growing Private Companies list for the last 12 years. We practice servant leadership and believe that by focusing on the success of our clients, team members, and partners, we all achieve greater success.

We have an immediate need for a highly skilled Senior leveled DevSecOps Engineer to support federal programs hosted on AWS GovCloud. This hybrid role requires expertise in DevSecOps best practices, cloud automation, security compliance, and continuous integration/continuous deployment (CI/CD) to enhance the security, scalability, and efficiency of mission-critical applications.

Core Responsibilities

• AWS GovCloud Architecture & Management: Design, implement, and maintain secure, scalable, and compliant AWS GovCloud environments for DoD and Civilian agency applications.
• DevSecOps Pipeline Development: Build and optimize CI/CD pipelines using tools like GitLab CI/CD, Jenkins, AWS Code Pipeline, and Terraform to automate deployments and security compliance.
• Security & Compliance: Ensure adherence to Federal cybersecurity frameworks (e.g., NIST 800-171, NIST 800-53, RMF, FedRAMP, Zero Trust). Implement STIGs, security baselines, and automated security scanning (SAST/DAST).
• Infrastructure as Code (IaC): Automate infrastructure provisioning and configuration management using Terraform, CloudFormation, and Ansible.
• Containerization & Orchestration: Deploy and manage Docker containers and Kubernetes clusters in AWS GovCloud, leveraging services like Amazon EKS, ECS, and Fargate.
• Monitoring & Incident Response: Implement AWS CloudWatch, AWS Security Hub, GuardDuty, Splunk, or ELK for proactive monitoring, logging, and compliance reporting.
• Automation & Scripting: Develop automation scripts using Python, Bash, or PowerShell to improve deployment efficiency and security enforcement.
• Collaboration & Knowledge Sharing: Work closely with software developers, cybersecurity teams, and cloud engineers to integrate security and automation into the software development lifecycle (SDLC).

• US citizenship with the ability to obtain successful DoD secret security clearance required
• Security+, AWS Certified Security
• 7+ years of hands-on experience in DevSecOps, Cloud Engineering, or Infrastructure Automation roles.
• Strong expertise in AWS GovCloud services, security configurations, and compliance frameworks.
• Experience with CI/CD tools (GitLab CI/CD, Jenkins, AWS Code Pipeline, or similar).
• Hands-on experience with Infrastructure as Code (IaC) using Terraform, CloudFormation, and Ansible.
• Proficiency in containerization and orchestration (Docker, Kubernetes, EKS, ECS, Fargate).
• Strong understanding of AWS security services (AWS IAM, GuardDuty, Security Hub,AWS KMS, AWS WAF, AWS Config, AWS Secrets Manager).
• Knowledge of federal cybersecurity frameworks (RMF, NIST 800-171/53, STIGs, ZeroTrust).
• Experience implementing automated security testing (SAST, DAST, vulnerability scanning, SBOM management).
• Proficiency in scripting (Python, Bash, PowerShell) for automation and security enforcement.

Please join us, as together we build a better world one mission at a time powered by Technology and its People!