DevSecOps Engineer

Plan A Technologies is seeking a DevSecOps Engineer to manage and optimize infrastructure, security, and operations across multiple AWS environments. The role involves enhancing CI/CD pipelines, ensuring compliance with NIST 800-53 Rev 5 and CIS AWS Foundations, and maintaining a 90% SLA Security Score. Responsibilities include cloud migrations, security monitoring, automation, and incident response for mission-critical systems. Requires 5+ years of DevSecOps experience.

Must Have

• Implement, manage, and optimize infrastructure across multiple AWS environments.
• Support cloud migrations, integrations, and environment provisioning using Infrastructure as Code (IaC).
• Maintain and enhance critical infrastructure for FMS, Client's Network Infrastructure, MCA Funds, Site Reliability operations, Automation platforms, Data Science DevOps (Red Support), Sandboxes, Databases, and AWS Infrastructure.
• Ensure adherence to security standards, maintaining at least a 90% SLA Security Score.
• Implement, monitor, and optimize cloud security services including AWS CloudWatch, GuardDuty, AWS Config.
• Support vulnerability management, patching cycles, and continuous improvement of security posture.
• Maintain compliance with industry standards such as NIST 800-53 Rev 5 and CIS AWS Foundations Benchmark v3.0.0.
• Provide disaster recovery planning, testing, and documentation for cloud environments.
• Develop, optimize, and maintain CI/CD pipelines to improve deployment performance and reliability.
• Provide SDLC maintenance and automation through IaC solutions (Terraform, CloudFormation, CDK, etc.).
• Enhance Site Reliability and infrastructure automation to drive consistency, repeatability, and operational efficiency.
• Lead and contribute to incident response, troubleshooting production issues and ensuring rapid resolution.
• Maintain thorough documentation of architecture, security controls, procedures, and infrastructure standards.
• Support log monitoring, performance tuning, and operational telemetry.
• Collaborate with cross-functional teams (Engineering, Security, Data Science, Network Operations).

Good to Have

• Experience with large-scale, multi-environment AWS deployments.
• Knowledge of compliance audits, documentation standards, and reporting.
• Background in network engineering or SDLC process optimization.
• Experience supporting data science, automation, or SRE-focused initiatives.
• Familiarity with scripting (Python, Bash) and containerization (Docker, EKS/ECS).

Perks & Benefits

• Generous vacation schedule
• Brand New Laptop
• Other goodies
• Great colleagues and an upbeat work environment

JOB OVERVIEW

Plan A Technologies is looking for a highly skilled DevSecOps Engineer to support infrastructure implementation, security compliance, and end-to-end operational excellence across multiple AWS environments. This role will focus on optimizing CI/CD pipelines, ensuring strong security posture, enabling smooth migrations and integrations, and maintaining resilient and compliant cloud infrastructure aligned with frameworks such as NIST 800-53 Rev 5 and CIS AWS Foundations Benchmark v3.0.0.

A key responsibility includes maintaining a 90% SLA Security Score while supporting mission-critical systems and environments.

Please note: you must have at least 5+ years of experience in DevSecOps to be considered for this role.

JOB RESPONSIBILITY

Infrastructure, Cloud & Environment Management:

• Implement, manage, and optimize infrastructure across multiple environments including AWS S3, Production, UAT, Dev, DevOps FMS, Prod, and Branches.
• Support cloud migrations, integrations, and environment provisioning using Infrastructure as Code (IaC).
• Maintain and enhance critical infrastructure for: FMS, Client's Network Infrastructure, MCA Funds, Site Reliability operations, Automation platforms, Data Science DevOps (Red Support), Sandboxes, Databases, and AWS Infrastructure

Security, Compliance & Monitoring:

• Ensure adherence to security standards, maintaining at least a 90% SLA Security Score across environments.
• Implement, monitor, and optimize cloud security services including AWS CloudWatch, GuardDuty, AWS Config, and related compliance tooling.
• Support vulnerability management, patching cycles, and continuous improvement of security posture.
• Maintain compliance with industry standards such as NIST 800-53 Rev 5 and CIS AWS Foundations Benchmark v3.0.0.
• Provide disaster recovery planning, testing, and documentation for cloud environments.

CI/CD, Automation & SDLC:

• Develop, optimize, and maintain CI/CD pipelines to improve deployment performance and reliability.
• Provide SDLC maintenance and automation through IaC solutions (Terraform, CloudFormation, CDK, etc.).
• Enhance Site Reliability and infrastructure automation to drive consistency, repeatability, and operational efficiency.

Operations, Documentation & Incident Response

• Lead and contribute to incident response, troubleshooting production issues and ensuring rapid resolution.
• Maintain thorough documentation of architecture, security controls, procedures, and infrastructure standards.
• Support log monitoring, performance tuning, and operational telemetry.
• Collaborate with cross-functional teams (Engineering, Security, Data Science, Network Operations) to ensure stable, secure, and scalable systems.

EXPERIENCE

• BS in Computer Science, Software Engineering or equivalent practical experience
• 5+ years of experience in DevSecOps, Cloud Engineering, or Security Engineering.
• Strong hands-on experience with AWS environments and AWS security services.
• Hands-on experience with IaC tools (Terraform, CloudFormation, Ansible, CDK).
• Strong understanding of security frameworks, especially NIST 800-53 Rev 5 and CIS AWS Foundations.
• Experience implementing and maintaining CI/CD pipelines.
• Proficiency with monitoring, logging, and event management tools (CloudWatch, ELK, Datadog, etc.).
• Strong knowledge in vulnerability management, patching, and cloud security hardening.
• Excellent troubleshooting and incident-response skills.
• Strong communication skills and ability to collaborate across cross-functional teams.
• Have solid written and verbal English skills.
• Ability to maintain a positive work attitude.
• Initiative and drive to do great things.

Nice to Have

• Experience with large-scale, multi-environment AWS deployments.
• Knowledge of compliance audits, documentation standards, and reporting.
• Background in network engineering or SDLC process optimization.
• Experience supporting data science, automation, or SRE-focused initiatives.
• Familiarity with scripting (Python, Bash) and containerization (Docker, EKS/ECS).