DevSecOps Engineer

Remote

Full Time

Mid Level

Camgian is seeking a motivated DevSecOps Engineer to join our growing engineering team. In this role, you will support compliance-driven security automation, CI/CD pipelines, and infrastructure reliability while embedding security best practices throughout the software development lifecycle. This position is ideal for candidates with foundational DevOps experience who are eager to expand their skills in cybersecurity tools, secure system design, and regulated environments.

Qualifications:

Bachelor’s degree in computer science, Software Engineering, or related field

2–5 years of experience in a DevOps, SRE, or automation-focused role

Experience with CI/CD tools (Jenkins, GitLab, Bitbucket) supporting multiple languages (C/C++, Java, Python)

Proficiency with source code management, branching strategies, merging, and code review practices

Strong familiarity with configuration management and automation tools (Ansible, Helm)

Solid Linux fundamentals and scripting experience (Bash, Python)

Understanding of secure software development lifecycle (SSDLC) concepts

Excellent communication and collaboration skills

U.S. citizenship required

Desired Skills:

Knowledge of security scanning tools and methodologies (SAST, DAST, SCA, vulnerability scanning)

Tools such as Anchore, Xray, Tenable/Nessus, or equivalent

Familiarity with artifact repositories and dependency management (Artifactory or equivalent)

Exposure to virtualization technologies (XCP-ng, XEN, KVM, or VMware)

Basic understanding of code quality and static analysis tools (SonarQube)

Exposure to cloud platforms (AWS, Azure, GCP) and Infrastructure as Code (Terraform)

Interest or experience with containerization and orchestration (Docker, Kubernetes)

Familiarity with monitoring and observability tools (Prometheus, Grafana)

Exposure to secrets management and secure configuration (Vault, AWS Secrets Manager, Kubernetes secrets)

Basic understanding of network and application security (TLS, certificates, authentication, authorization)

Exposure to compliance frameworks such as NIST 800-53, NIST 800-171, RMF, or similar

Experience supporting audits, assessments, or ATO-related activities is a plus

Familiarity with centralized logging or SIEM tools (ELK, OpenSearch, Splunk) is a plus

Responsibilities:

Support and maintain automated security scanning workflows across the CI/CD pipeline

Collaborate with engineering teams to triage, remediate, and prevent security vulnerabilities

Monitor and analyze security scanning results in development, staging, and production environments

Maintain and enhance CI/CD pipelines using Jenkins, GitLab, and Bitbucket

Automate infrastructure provisioning and configuration using Ansible, Helm, and Infrastructure as Code

Support containerization strategies and secure deployments using Docker and Kubernetes

Assist with secrets management, credential handling, and secure configuration baselines

Support audit preparation, evidence collection, and compliance-related activities

Document processes, present findings, incorporate feedback, and contribute to continuous improvement

Assist with troubleshooting across development, staging, and production environments with a security-first mindset

Apply for this position

Required*

First Name*

Last Name*

Email Address*

Phone*

Address

Resume*

We've received your resume. Click here to update it.

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

This position requires a government security clearance, you must be a US Citizen for consideration. Are you a US Citizen?* YesNo

The following questions are entirely optional.

To comply with government Equal Employment Opportunity and/or Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.

Gender

Race/Ethnicity

Invitation for Job Applicants to Self-Identify as a U.S. Veteran

A “disabled veteran” is one of the following:
- a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
- a person who was discharged or released from active duty because of a service-connected disability.
A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Veteran status

I IDENTIFY AS ONE OR MORE OF THE CLASSIFICATIONS OF PROTECTED VETERAN LISTED ABOVE
I AM NOT A PROTECTED VETERAN
I DON’T WISH TO ANSWER

Human Check*

Submit Application

Are you ready to join our team? Apply to one of our positions to start your new journey!

DevSecOps Engineer

Apply for this position