Information Technology

Job description

Lead IT DevSecOps Engineer
Cleveland, OH (Onsite 5 Days a Week)
Direct Hire
$120-160K + Bonus (Compensation based on experience; Flexible)

Overview
We are seeking a Lead IT DevSecOps Engineer to collaborate with our application development teams, centralize source control and CI/CD processes on GitHub, and integrate Secure Software Development Lifecycle (SDLC) practices into each workflow. This position has solid backing from the leadership in Cybersecurity, IT Infrastructure, and Applications. The ideal candidate should be enthusiastic about a security-first approach, committed to upholding CI/CD standards, and excited about streamlining a diverse, multi-platform engineering environment into a unified, modern system.

Responsibilities

• Centralize source control and CI/CD processes using GitHub.
• Collaborate with application development teams to transition repositories, establishing sustainable standards, branching strategies, and governance.
• Advocate for Secure SDLC methodologies.
• Embed SAST, DAST, dependency scanning, secret detection, and code scanning across all pipelines, focusing on adoption as well as deployment.
• Develop the necessary automation and platform enhancements.
• Design CI/CD pipelines leveraging GitHub Actions.
• Create build and deployment automation scripts in NodeJS and C#. Oversee DevOps infrastructure, container registries, and cloud platform services.
• Mentor developers to help them follow best practices.
• Devise templates and reusable patterns to promote secure-by-default practices, actively participating in areas that accelerate progress.
• The primary objective for the first year is to establish a solid foundation for consolidation and Secure SDLC.
• In year two and onwards, the role will expand to include insights into AI/ML pipeline security as the AI landscape evolves.
• Potential career advancement paths may include technical roles like Architect or Principal, or leadership roles managing a team as the program expands.

Minimum Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent professional experience.
• 6+ years of experience in DevOps, DevSecOps, or platform engineering.
• Hands-on experience with consolidating or migrating repository and CI/CD platforms.
• Strong programming and scripting skills in NodeJS and C#; Python experience is also beneficial.
• Extensive knowledge of Git, GitHub, and GitHub Actions.
• Experience in integrating SAST, DAST, dependency scanning, and secret detection within CI/CD pipelines.
• Working familiarity with container technologies and a primary cloud platform (preferably Azure).
• Other duties may be assigned as needed.
• Must be available to work full-time on-site.

Preferred Qualifications

• Experience transitioning from Azure DevOps, GitLab, Jenkins, or TFS to GitHub.
• Familiarity with .NET applications and legacy application systems.
• An interest or experience in AI/ML pipeline security.
• Proficiency with Infrastructure as Code tools (e.g., Terraform, ARM, or similar) and relevant certifications (AZ-400, GIAC GWEB/GCSA, or equivalent).