What are the responsibilities and job description for the DevSecOps Engineer position at Serigor Inc?
Job Title: Mid-Level DevSecOps Engineer
Location: Washington, DC (Hybrid – Remote with occasional onsite support as needed)
Duration: Upto 5 Years
Position Overview
We are seeking a Mid-Level DevSecOps Engineer to support enterprise cloud and hybrid
infrastructure modernization initiatives. The ideal candidate will have hands-on experience with
Infrastructure as Code (IaC), CI/CD automation, container orchestration, cloud platforms, and
security integration. This role will focus on enhancing existing DevSecOps capabilities, automating
infrastructure deployments, and embedding security throughout the software development
lifecycle.
Key Responsibilities
- Develop, maintain, and optimize Infrastructure as Code (IaC) using Terraform and/or OpenTofu.
- Create and manage Ansible playbooks and automation workflows for configuration management and compliance.
- Design, implement, and support CI/CD pipelines using GitHub Actions.
- Build, manage, and secure Docker containers and Kubernetes environments.
- Integrate security controls into CI/CD pipelines, including SAST, DAST, secrets scanning, and policy-as-code validation.
- Support AWS cloud infrastructure deployments and automation initiatives.
- Implement container and infrastructure hardening in alignment with security best practices.
- Participate in sprint planning, code reviews, troubleshooting, and technical documentation activities.
- Collaborate with engineering, cloud, and security teams to improve automation and operational efficiency.
Required Qualifications
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or a related field (or equivalent experience).
- Minimum 5 years of IT experience.
- Minimum 3 years of hands-on DevSecOps experience.
- Experience implementing security scanning tools and Policy-as-Code frameworks.
- Strong experience with Terraform and/or OpenTofu.
- Hands-on experience with Ansible automation.
- Experience designing and maintaining GitHub Actions workflows.
- Proven CI/CD pipeline implementation experience.
- Experience with Docker and Kubernetes.
- Strong scripting skills using Python and Bash.
- Experience supporting AWS environments.
- Hands-on experience with SAST, DAST, security scanning tools, and Policy-as-Code frameworks.
- Strong understanding of Git-based version control and code review processes.
Preferred Qualifications
- Experience working in federal, government, or highly regulated environments.
- Knowledge of NIST, FISMA, FedRAMP, or similar compliance frameworks.
- Experience with Secure SDLC practices.
- Familiarity with secrets management solutions such as HashiCorp Vault.
- Experience implementing CIS security benchmarks.
- AWS Certified Solutions Architect
- AWS Certified DevOps Engineer
- Certified Kubernetes Administrator (CKA)
- Terraform Certification
Success Profile
Candidates should demonstrate proven experience with infrastructure automation, CI/CD
implementation, container orchestration, and integrating security throughout the software
development lifecycle.