DevSecOps Engineer I Colorado Springs, CO Active TS/SCI with Polygraph Compensation Range: $120,000 – $160,000
Company Overview: Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. Realizing early on that our most prized assets are our employees, we continually focus our attention on improving the overall work/life experience they have supporting the mission. Our Team is pushed every day to use their industry leading knowledge to provide end-to-end solutions to combat our nation’s toughest and most secure problems. If you are looking for a place to not only be professionally challenged, but encouraged and supported by a company that cares, don’t look any further than Cornerstone Defense.
Job Responsibilities:
As a DevSecOps Engineer I, you’ll play a critical role in designing, implementing, and maintaining secure and efficient software development and deployment pipelines.
You will collaborate with cross-functional teams to integrate security practices seamlessly into the development and operations lifecycle, ensuring the delivery of high-quality, secure, and reliable software solutions.
Collaborate with development, operations, and security teams to integrate security practices into the software development lifecycle.
Design, implement, and maintain CI/CD pipelines that incorporate automated security testing, vulnerability scanning, and compliance checks.
Develop and maintain infrastructure as code (IaC) templates and configurations, ensuring security best practices are applied to cloud resources and infrastructure components.
Perform regular security assessments, code reviews, and penetration testing to identify and address vulnerabilities and weaknesses in applications, code, and infrastructure.
Monitor and analyze system and application logs to detect and respond to security incidents.
Implement and manage identity and access management (IAM) solutions, ensuring appropriate authentication and authorization mechanisms are in place.
Collaborate with software engineers to provide guidance on secure coding practices and assist in remediation of security findings.
Participate in incident response activities, helping to investigate and mitigate security incidents in a timely manner.
Contribute to the development and maintenance of security policies, procedures, and documentation.
Required Skills:
At least 6 years of experience as a DevSecOps Engineer or similar role, with a focus on integrating security into the software development lifecycle.
Strong experience with DevOps practices, CI/CD pipelines, and automation tools (e.g., Jenkins, GitLab CI/CD, Artifactory, SonarQube, Selenium, Fortify, Acunetix, and Prisma Cloud).
Strong Experience building DevSecOps solutions at scale across IL5 to IL6+ classification domains
Experience with infrastructure as code (IaC) tools such as Terraform, CloudFormation, or Ansible.
Experience with cloud platforms (e.g., AWS, Azure, GCP) and securing cloud-based applications and services.
Experience with scripting languages (e.g., Python, Bash) for automation and tool integration.
Knowledge of security best practices, common vulnerabilities, and exposure to security frameworks (e.g., OWASP, NIST).
Company Benefits: Cornerstone Defense offers a comprehensive list of benefits, designed to give employees and their families several options to choose from when selecting benefits that best fit their needs. These offerings include not only a full suite of the traditional Medical/Dental/Vision insurances, but also a number of other benefits and perks to include, but not limited to: A 401(K) plan with a company match, tuition and training assistances, paid vacation/leave, a fitness reimbursement program, college savings plan, commuter benefits, financial advisory services, flex spending accounts, health savings accounts, STD/LTD coverage, life and AD&D insurance, employee assistance programs, life financial planning assistance, and legal resources.