DevSecOps & Secure‑SDLC Engineer What can you expect? Lead initiatives related to DevSecOps and Secure‑SDLC. Enhance the company’s Secure Software Development Lifecycle (Secure‑SDLC) to reflect the Application Development Security Policy. Select and standardize application security tools, including vendor/tool assessments and full POCs. Integrate Secure‑SDLC requirements and other security policy/requirements into DevSecOps processes. Define and enhance application security requirements and standards designed for agile development methods, leveraging both traditional and cloud architectures, and container workloads. What you need to have 5+ years of DevSecOps and Secure‑SDLC experience. Certifications such as CISSP, CSSLP, or equivalent in cloud security/DevSecOps automation. Post‑secondary education or equivalent experience as a DevSecOps Engineer. Experience implementing Secure‑SDLC frameworks and DevSecOps automations. Experience with security tooling (SAST, DAST, SCA, threat modeling, supply‑chain tools). Hands‑on experience integrating security scans into DevSecOps pipelines. Programming language proficiency (one or more). Familiarity with OWASP Top 10, SANS Top 25, CWE, and other security frameworks. What makes you stand out Identify application security requirements and propose solutions based on industry best practices. Assess and remediate threats and vulnerabilities in software and hosting environments. The applicable base salary range for this role is $126,000 to $176,000, with potential performance‑based incentives and a comprehensive rewards package that includes health and welfare benefits, tuition assistance, retirement programs, and employee assistance programs. #J-18808-Ljbffr