Job Description Insight Global is seeking a highly skilled and motivated DevSecOps Engineers to begin an exciting and challenging career with our large Enterprise Application Support Program on one of our project delivery teams. As a DevSecOps Engineer, you will integrate security practices into our DevOps processes, ensuring the development and deployment of secure applications. The ideal candidate will possess a strong background in both security and DevOps methodologies, with a passion for automating security processes and enhancing the overall security posture of our customer infrastructure and applications. We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/. Skills and Requirements • Bachelor's degree in Computer Science, Management Information Systems, or relevant discipline (4 years of equivalent experience) • Active IRS MBI Clearance • Minimum of 5+ years of experience in DevOps, security engineering, or a related field experience with: o Strong understanding of security principles and best practices, including threat modeling, risk assessment, and vulnerability management. o Proficiency with DevOps tools and practices, including CI/CD pipelines, containerization (Docker, Kubernetes), and version control systems (Git). o Proficiency in containerization technologies (Docker, Podman) and orchestration tools (Kubernetes, OpenShift). o Experience with security tools such as OWASP ZAP, Burp Suite, Nessus, Metasploit, or similar. o Solid understanding of cloud security concepts and experience with cloud platforms (AWS, Azure, Google Cloud). o Strong scripting and automation skills using languages such as Python, Bash, or PowerShell. o Excellent problem-solving skills and the ability to think critically about potential security issues and solutions. o Effective communication and collaboration skills, with the ability to work cross-functionally and educate team members. o Relevant certifications such as CISSP, CEH, OSCP, AWS Certified Security – Specialty, or similar are preferred. o Maintenance and ongoing development of continuous build/ integration infrastructure. o Provide Source Control Management/Documentation, create and maintain fully automated CI build processes for multiple environments; write, build and deploy scripts. o Support CI/CD tools integration, operations, change management, and maintenance. Support full automation of CI/CD testing. o Support policies, standards, guidelines, governance and related guidance for both CI/CD operations and for work of developers. o Enable successful release management by moving code from Development and Testing environments to Staging and Production. o Work closely with software developers, production support, and information security to automate and support infrastructure and tooling in cloud-based platforms. o Provide guidance and apply agile and DevOps/DevSecOps practices to streamline product delivery and reliable operations of product. o Continuously identify opportunities to automate and increase efficiency. • Proven background working in DevOps software development environments with specific experience and knowledge in one or more of the following areas: o Software Program Management / Acquisition o Agile software development with Scrum or Kanban o Agile collaboration tools such as Atlassian Jira, Confluence o CI/CD with Jenkins, GitLab, Bitbucket, or MS Azure o Cloud - Platform One o Cross Domain Solutions o C-ATO o Multi-Level Security Networks (MLS / MILS) o Containerization with Docker or Red Hat Podman o Container management with Kubernetes and Helm o Security automation • Experience with compliance frameworks and standards such as ISO 27001, NIST, SOC 2, or GDPR. • Familiarity with security orchestration, automation, and response (SOAR) solutions.