Job Description
DevSecOps Engineer (Google Cloud Platform - ITAR Environment)
Location: Bloomington, MN. (Hybrid)
Long term contract
Required Qualifications
• 5+ years of experience in DevOps, Cloud Engineering, or DevSecOps roles.
• Hands-on experience with Google Cloud Platform (GCP).
• Strong experience with CI/CD pipeline development.
• Experience with Infrastructure as Code
• Experience with containerization and Kubernetes.
• Knowledge of secure software development practices.
• Experience with cloud security frameworks and compliance requirements.
Key Responsibilities
Cloud & Infrastructure Security
• Design, implement, and maintain secure cloud infrastructure in Google Cloud Platform (GCP).
• Implement security controls, monitoring, and compliance automation aligned with ITAR, NIST, CMMC and corporate security standards.
• Configure and maintain IAM policies, network segmentation, and secure access controls.
DevSecOps & CI/CD
• Build and maintain secure CI/CD pipelines using tools such as:
• Jenkins
• GitLab CI/CD
• GitHub Actions
• Cloud Build
• Integrate automated security scanning into pipelines including:
• SAST
• DAST
• container vulnerability scanning
• dependency scanning
• Automate infrastructure deployments using Infrastructure as Code (IaC) tools.
Container & Platform Security
• Secure containerized workloads running on GKE (Google Kubernetes Engine).
• Implement container security best practices including:
• image scanning
• runtime protection
• secrets management
• Maintain Kubernetes security configurations and policies.