Apply on Employer Site

Koniag · 9 hours ago

Cloud DevSecOps Engineer

Washington, DC, USA

Full-time

Hybrid

Mid, Senior Level

$120K/yr - $150K/yr

5+ years exp

Koniag Data Solutions, a Koniag Government Services company, is seeking a Cloud DevSecOps Engineer to support KDS and their government customer in Washington, DC. The role involves implementing and enhancing security controls within cloud environments, focusing primarily on AWS infrastructure, while combining security engineering with DevSecOps practices.

FinanceVenture CapitalFinancial ServicesImpact InvestingWealth Management

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Design, implement, and maintain security controls and monitoring solutions in AWS cloud environments

Develop and maintain Infrastructure as Code (IaC) using Terraform and OpenTofu for secure, repeatable deployments

Integrate security tools and processes into CI/CD pipelines using GitLab

Configure, maintain, and optimize Splunk for security monitoring, log aggregation, and threat detection

Conduct security assessments, vulnerability scans, and penetration testing of cloud infrastructure

Implement and maintain security automation tools and scripts to enhance security posture

Collaborate with development teams to embed security best practices into the software development lifecycle

Monitor security alerts, investigate incidents, and respond to security events

Create and maintain security documentation, runbooks, and standard operating procedures

Participate in security architecture reviews and provide recommendations for security improvements

Automate compliance checks and reporting for various security frameworks

Manage secrets, credentials, and encryption key management across cloud environments

Stay current with emerging threats, vulnerabilities, and security technologies

Qualification

AWS security servicesInfrastructure as CodeDevSecOps practicesSplunkCloud security architectureSecurity compliance frameworksScripting languagesContainer securityAnalytical skillsVersion control systemsCommunication skillsTeam collaboration

Required

Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field from an accredited college or university, or equivalent work experience

5+ years of hands-on experience in cybersecurity with a focus on cloud security

3+ years of experience with AWS security services and best practices

2+ years of experience implementing DevSecOps practices

Expert-level knowledge of AWS security services including IAM, Security Groups, GuardDuty, CloudTrail, Config, Security Hub, and KMS

Hands-on experience developing and maintaining Infrastructure as Code using Terraform and/or OpenTofu

Proficiency with GitLab CI/CD pipelines and integrating security tools into DevSecOps workflows

Strong experience with Splunk for security monitoring, including creating searches, alerts, dashboards, and correlation rules

Deep understanding of cloud security best practices, including the AWS Well-Architected Framework Security Pillar

Knowledge of network security concepts, including VPCs, security groups, NACLs, and VPN configurations

Experience with container security (Docker, Kubernetes/EKS) and serverless security

Proficiency in scripting languages such as Python, Bash, or PowerShell for security automation

Understanding of security compliance frameworks (NIST, FedRAMP, FISMA, CIS Benchmarks)

Experience with vulnerability management tools and practices

Strong understanding of authentication and authorization mechanisms (OAuth, SAML, MFA)

Excellent analytical and problem-solving skills with attention to detail

Strong communication skills with the ability to explain complex security concepts to technical and non-technical audiences

Ability to work independently and as part of a collaborative team

Experience with version control systems, particularly Git

Preferred

Current AWS security certification (AWS Certified Security - Specialty or AWS Certified Solutions Architect)

Additional relevant certifications such as CISSP, CCSP, CEH, GIAC, or similar

Experience working in federal government IT environments

Familiarity with additional cloud platforms (Azure, GCP)

Experience with Security Orchestration, Automation and Response (SOAR) platforms

Knowledge of threat intelligence platforms and integration

Experience with configuration management tools (Ansible, Chef, Puppet)

Understanding of zero-trust architecture principles

Experience with application security testing tools (SAST, DAST, SCA)

Familiarity with service mesh technologies and security implementations

Experience with HashiCorp Vault or similar secrets management solutions

Knowledge of Agile and DevOps methodologies

Experience with immutable infrastructure and serverless architectures

Benefits

Health, dental and vision insurance

401K with company matching

Flexible spending accounts

Paid holidays

Three weeks paid time off

Company

Koniag

Koniag was incorporated on June 23, 1972, to manage the land and financial assets on behalf of the corporation.

Founded in 1972

Kodiak, Alaska, USA

1001-5000 employees

https://www.koniag.com

H1B Sponsorship

Koniag has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2020 (1)

Funding

Current Stage

Late Stage

Leadership Team

Ron Unger

Chief Executive Officer

Sharon Beeson

CFO

Recent News

EIN Presswire

Koniag Capital Announces Koniag Cyber Solutions, Expanding Service to Commercial Clients in Highly Regulated Industries

2025-08-19

PR Newswire

Leader in Fields of Archaeology and Anthropology Named to Chronicle Heritage Board

2025-06-09

Seattle TechFlash

Crystal Village, a $250M mixed-use development, is taking shape in Leander

2025-03-27

Company data provided by crunchbase