Demo

PA - Senior DevSecOps Engineer - 799484 (Hybrid)

SR International Inc.
Mechanicsburg, PA Contractor
POSTED ON 6/4/2026
AVAILABLE BEFORE 7/4/2026

Job Title: Senior DevSecOps Engineer

Client: Commonwealth of Pennsylvania

Job ID: 799484 - hybrid (60% remote vs. 40% onsite), 1st day onsite onboarding

Location: Mechanicsburg, PA 17050

Closing Date:04/17/2026

 

Role summary

PSDC (Public Safety Delivery Center) requires the services of a Senior DevSecOps Engineer to act as consultant with the PSDC Solutions Management group. 

Hands-on security automation for AWS delivery.

Build secure-by-default CDK constructs and CloudFormation templates, wire them into CI/CD, and enforce compliance checks that map to CJIS and NIST.

Azure support is a future consideration, not a core day-one duty.

Scope boundaries

  • Does not own enterprise AWS Organizations or SCP operations.
  • Designs and builds reference guardrails and enforcement patterns that can be deployed by enterprise teams. 
  • Focuses on preventive controls and compliance automation, not incident response. 

What you will deliver

First 90 days

  1. Pipeline security templates in GitHub Actions and Azure DevOps with SAST, SCA, IaC, container, and secret scanning gates. 
  2. Compliance as code in reference accounts: AWS Config rules and Security Hub standards aligned to CJIS and NIST 800-53, with exceptions workflow documented. 
  3. IaC reference modules using AWS CDK and CloudFormation for IAM least privilege, KMS, Secrets Manager, logging, and network baselines; Terraform equivalents provided where teams require them. 
  4. Evidence exports tying checks to control IDs and producing auditor-ready artifacts. 

Ongoing

  • Harden CDK/CFT modules and pipeline templates as compliance needs evolve.
  • Coach pilot teams to adopt templates.
  • Raise gaps to enterprise teams for org-level enforcement.

Day-to-day responsibilities

  • Author and maintain AWS CDK constructs and CloudFormation templates; provide Terraform versions as secondary. 
  • Implement AWS Config conformance, Security Hub standards, and GuardDuty routing in reference accounts.
  • Wire scanning in CI/CD for app code, containers, and IaC.
  • Create reusable GitHub/Azure DevOps templates with enforcement gates and exception handling.
  • Generate posture and evidence reports mapped to CJIS and NIST controls.

Required skills

  • 5 years AWS security automation and DevOps.
  • Strong with AWS CDK and CloudFormation; working proficiency in Terraform
  • CI/CD authoring in GitHub Actions and Azure DevOps
  • Proficient in Python and Bash, with PowerShell for Windows automation. 
  • Able to read Java and C# to integrate and tune SAST/SCA. 
  • Practical knowledge of CJIS and NIST 800-53 control families and how to automate checks and evidence. 

Nice to have

  • EKS/ECS/Lambda hardening patterns.
  • OPA/Conftest, Checkov, Trivy, Inspector, CodeQL or equivalent.
  • Basic Azure security automation for future phases.

Decision rights

Independent on design and build within standards; proposes guardrails and reference patterns; escalates enterprise-wide changes.

 

<>

Hourly Wage Estimation for PA - Senior DevSecOps Engineer - 799484 (Hybrid) in Mechanicsburg, PA
$49.00 to $63.00
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a PA - Senior DevSecOps Engineer - 799484 (Hybrid)?

Sign up to receive alerts about other jobs on the PA - Senior DevSecOps Engineer - 799484 (Hybrid) career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$117,024 - $149,811
Income Estimation: 
$137,568 - $176,908
Income Estimation: 
$92,369 - $122,605
Income Estimation: 
$117,024 - $149,811
Employees: Get a Salary Increase
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at SR International Inc.

MS - Network Infrastructure Engineer – 159547
Apply
  • SR International Inc. Clinton, MS
  • Job Title: Network Infrastructure Engineer Job ID: 159547-Onsite Client: State of Mississippi Closing Date: 6/9/2026 at 2.00 PM Summary: DOR - Office of In... more
  • 1 Day Ago
AZDES - Procurement Analyst 2 -11281- (IT Strategy & Projects) (Hybrid)
Apply
  • SR International Inc. Phoenix, AZ
  • Candidate m us t be eligible to convert to an FTE. State is unable to sponsor any visas. Job Title: Procurement Analyst 2 - (IT Strategy & Projects) JOb ID... more
  • 1 Day Ago
PA - IT Security and Support Contractor - 804048 - Hybrid
Apply
  • SR International Inc. Harrisburg, PA
  • Job Title: IT Security and Support Contractor Job ID: 804048 - Hybrid Client: Commonwealth of PA 2 - PUC Closing Date: 06/08/2026 at 4.00 pm Long-term cont... more
  • 1 Day Ago
MS - Medicaid Management Information Systems (MMIS) SME - 156120 (Onsite)
Apply
  • SR International Inc. Jackson, MS
  • State of Mississippi - Medicaid Management Information Systems (MMIS) SME (15 years of experience)- 156120 (Onsite) Location: Jackson, MS 39211 100% onsite... more
  • 2 Days Ago
View More Jobs at SR International Inc.

Not the job you're looking for? Here are some other PA - Senior DevSecOps Engineer - 799484 (Hybrid) jobs in the Mechanicsburg, PA area that may be a better fit.

Direct Client: Senior DevSecOps Engineer @ Mechanicsburg, PA – Hybrid
Apply
  • KSN Technologies, Inc. Mechanicsburg, PA
  • Senior DevSecOps Engineer Mechanicsburg, PA – Hybrid Longterm Contract Looking for the candidates who can work without any visa sponsorship. Work Location:... more
  • 1 Day Ago
Senior Civil Engineer (Transportation)
Apply
  • Commonwealth of PA Harrisburg, PA
  • THE POSITION Do you have a sharp eye for detail, exceptional organizational skills, and a deep understanding of engineering principles? The Pennsylvania De... more
  • 8 Days Ago
View More Jobs

AI Assistant is available now!

Feel free to start your new journey!