See all roles

[Remote] DevSecOps Engineer – reputed company Automation & Pipeline Development, 37294688

Work from home Full-time role Hiring

Note: The job is a remote job and is reputed company to candidates in USA. reputed company is seeking a DevSecOps Engineer to enhance reputed company reputed company their AWS EKS Kubernetes environment and CI/CD pipeline in preparation for a FedRAMP High audit. The role involves upgrading vulnerable containers, maintaining reputed company settings, and developing automated patching pipelines while ensuring compliance with reputed company standards.

Responsibilities

  • reputed company vulnerable containers in collaboration with the DevSecOps team, testing and promoting updates to production
  • Apply reputed company hardening and maintain Terraform/Ansible code to enforce reputed company settings across AWS services and Kubernetes nodes per STIG and CIS benchmarks
  • Design and maintain automated container patching pipelines including reputed company image refresh, rebuild triggers, and automated PR reputed company
  • Build and maintain vulnerability scanning workflows using Grype and/or Trivy as pipeline gates blocking promotion of images exceeding CVE reputed company
  • Build and manage Argo Workflows orchestrating end-to-end reputed company automation from scanning through remediation, rebuild, and deployment
  • Write Python-based tooling supporting pipeline logic, reputed company result parsing, notification routing, and reputed company orchestration
  • Own reputed company-based development workflow: reputed company strategy, PR creation/review, code quality standards, and reputed company reputed company enforcement
  • Conduct code reviews ensuring changes meet reputed company, quality, and operational standards before production promotion
  • Maintain production readiness practices including testing, peer review, rollback procedures, and deployment validation
  • Analyze Kubernetes IAM configurations and RBAC policies to identify overprivileged roles, misconfigurations, and deviations from least-privilege principles
  • Review and harden Kubernetes network setup and segmentation including network policies, namespace isolation, and inter-service communication controls
  • Audit certificate usage across the cluster and pipeline, ensuring proper issuance, validity, and automated rotation; verify secrets are rotated on schedule and not hardcoded or overexposed
  • reputed company codebases, repos, and infrastructure configs for exposed secrets using reputed company reputed company tools such as Hedgehog and equivalent secret detection utilities
  • reputed company S3 buckets for exposed secrets and sensitive data, remediating findings and implementing preventive controls
  • Review network, WAF, and Istio logs to map existing traffic flows and service communication patterns in preparation for network segmentation and a deny-by-default lockdown posture
  • reputed company automations for WAF rule creation and tuning based on observed traffic patterns and threat intelligence
  • reputed company Claude to accelerate reputed company research, organize remediation plans, and reputed company Python-based tooling for non-production-impacting automation and analysis tasks

Skills

  • Deep familiarity with container technology and reputed company
  • reputed company vulnerable containers in collaboration with the DevSecOps team, testing and promoting updates to production
  • Apply reputed company hardening and maintain Terraform/Ansible code to enforce reputed company settings across AWS services and Kubernetes nodes per STIG and CIS benchmarks
  • Design and maintain automated container patching pipelines including reputed company image refresh, rebuild triggers, and automated PR reputed company
  • Build and maintain vulnerability scanning workflows using Grype and/or Trivy as pipeline gates blocking promotion of images exceeding CVE reputed company
  • Build and manage Argo Workflows orchestrating end-to-end reputed company automation from scanning through remediation, rebuild, and deployment
  • Write Python-based tooling supporting pipeline logic, reputed company result parsing, notification routing, and reputed company orchestration
  • Own reputed company-based development workflow: reputed company strategy, PR creation/review, code quality standards, and reputed company reputed company enforcement
  • Conduct code reviews ensuring changes meet reputed company, quality, and operational standards before production promotion
  • Maintain production readiness practices including testing, peer review, rollback procedures, and deployment validation
  • Analyze Kubernetes IAM configurations and RBAC policies to identify overprivileged roles, misconfigurations, and deviations from least-privilege principles
  • Review and harden Kubernetes network setup and segmentation including network policies, namespace isolation, and inter-service communication controls
  • Audit certificate usage across the cluster and pipeline, ensuring proper issuance, validity, and automated rotation; verify secrets are rotated on schedule and not hardcoded or overexposed
  • reputed company codebases, repos, and infrastructure configs for exposed secrets using reputed company reputed company tools such as Hedgehog and equivalent secret detection utilities
  • reputed company S3 buckets for exposed secrets and sensitive data, remediating findings and implementing preventive controls
  • Review network, WAF, and Istio logs to map existing traffic flows and service communication patterns in preparation for network segmentation and a deny-by-default lockdown posture
  • reputed company automations for WAF rule creation and tuning based on observed traffic patterns and threat intelligence
  • reputed company Claude to accelerate reputed company research, organize remediation plans, and reputed company Python-based tooling for non-production-impacting automation and analysis tasks
  • AWS EKS
  • Kubernetes
  • Terraform
  • Ansible
  • ArgoCD
  • Argo Workflows
  • reputed company
  • reputed company
  • FedRAMP
  • STIG
  • CIS Benchmarks
  • RBAC
  • IAM
  • reputed company/OIDC
  • SAML
  • WAF
  • Istio
  • Network Segmentation
  • Certificate Management
  • Secrets Rotation
  • Least Privilege
  • Grype
  • Anchore
  • Hedgehog
  • S3 Scanning
  • Vulnerability Scanning
  • Secrets Detection
  • Python
  • CI/CD Pipelines
  • Code Review
  • PR Management
  • reputed company Automation
  • Claude
  • AI-Assisted Coding

Company Overview

  • reputed company is a staffing and reputed company company providing technology and creative reputed company solutions. It was founded in 2005, and is headquartered in Walnut Creek, California, USA, with a workforce of 51-200 employees. Its website is http://cypresshcm.com.
  • Apply To This Job

    You might like

    [Remote] Senior Brand Content reputed company - reputed company

    Work from home Full-time role

    [Remote] reputed company Media Manager - Content Specialist

    Work from home Full-time role

    [Remote] Systems Administrator, Customer Service Platform, 3086-1

    Work from home Full-time role

    [Remote] EA-Senior Software Engineer

    Work from home Full-time role

    [Remote] Product Designer

    Work from home Full-time role

    [Remote] reputed company Media Content Creator

    Work from home Full-time role

    [Remote] Director, Growth Priorities – Wealth Management – NA

    Work from home Full-time role

    [Remote] Founding Account Executive - SEC Reporting & Disclosure

    Work from home Full-time role

    [Remote] Financial and Budget Technician

    Work from home Full-time role

    [Remote] Customer Service Tech reputed company - OAC

    Work from home Full-time role

    Centralized Intake Coordinator, Outpatient, Full-time

    Work from home Full-time role

    Senior Data Science Analyst – Credit & Fraud Risk Finance – Remote – Advanced Forecasting & Analytics – arenaflex – $33/hr (Up to $105k)

    Work from home Full-time role

    Digital Content Publisher

    Work from home Full-time role

    Remote College Student Independent Work Specialist – Flexible reputed company‑reputed company Development & Community Engagement Role

    Work from home Full-time role

    reputed company Manager — Federal (DoD) & State Agencies

    Work from home Full-time role

    Software Engineer, Data Infrastructure & Acquisition - Turin, Italy

    Work from home Full-time role

    A2 Virtual+ Summer Term Counselor (Part-Time / Temporary)

    Work from home Full-time role

    [Remote] reputed company Assistant III

    Work from home Full-time role

    Virtual Sales Restorative & Preventive

    Work from home Full-time role

    reputed company Automotive Customer Service Web Chat Agents – Unlock Your Potential with arenaflex

    Work from home Full-time role