Lead DevSecOps Engineer

We are helping our client look for a TS/SCI cleared Lead DevSecOps Engineer with a focus on securing containers, orchestration, CI/CD pipelines and cloud infrastructure to join our growing team. The successful candidate will have an essential role in ensuring the information security of their business.You will be working in a team that embraces DevSecOps culture and strives to secure cloud infrastructure using cutting-edge technologies.The main responsibilities of the position include:Conduct assessments and make recommendations to ensure that appropriate controls are in placeParticipate in efforts that shape the company's security policies, procedures, and standards for use in all DevSecOps phasesInvestigate and implement security best practices for containers, container images, and Kubernetes (AWS EKS) in all phasesConfigure and maintain platforms for workload protectionLiaise with Cloud DevOps and Platform Engineers to investigate and implement security best practices for network security and access control in containerized environments, and suggest security improvements to the CI/CD processInvestigate and implement security best practices for GitLab and Jenkins platforms, pipelines, and runnersLiaise with developers to implement security best practicesCreate, develop, and implement solutions to address infrastructure and security requirements Identify and apply automation to improve security and reduce repetitive workMain requirements:BSc/MSc in Information Security or any other related fieldActive TS/SCI security clearance (eligibility CAN be considered) Minimum 8 years of working experience in Information Security with a focus of at least 4 years in DevSecOpsStrong experience in securing containers, container images, and Kubernetes (preferably AWS EKS)Experience with securing GitLab and Jenkins platforms, pipelines, and runnersStrong experience with Cilium or Kubernetes network policiesExperience with Infrastructure as Code using Terraform and Policy-as-CodeTechnical knowledge in AWS security and networking services (IAM, CloudTrail, VPC, EC2, EKS, ELB)Ability to work autonomously with minimum supervision and to integrate well within a teamExcellent problem-solving skills and the ability to quickly learn new technologies in depthThe following will be considered an advantage:Certified Kubernetes Security Specialist, Certified Kubernetes Administrator, and AWS Certified Security - Specialty certificatesHands-on experience with Prisma Cloud for workload protectionExperience with Helm, Istio, and scripting languages preferably in PythonOscar Associates Limited (US) is acting as an Employment Agency in relation to this vacancy.