LingaTech

DevSecOps Engineer

Mechanicsburg, PA - Contracted

Location: Mechanicsburg, PA
Position Type: Hybrid
Hybrid Schedule: 2 days onsite
Contract Length: 7 months + extensions

This role focuses on hands-on security automation in AWS, delivering secure-by-default CDK constructs, CloudFormation templates, and CI/CD pipeline integrations with compliance checks mapped to CJIS and NIST standards. The position emphasizes preventive controls, compliance-as-code, and reusable security patterns that enterprise teams can adopt, with Azure support considered for future phases.

Required Skills:

  • 5 years of AWS security automation and DevOps experience

  • Strong expertise with AWS CDK and CloudFormation; working proficiency in Terraform

  • Experience authoring CI/CD pipelines in GitHub Actions and Azure DevOps

  • Proficiency in Python and Bash, with PowerShell for Windows automation

  • Ability to read Java and C# to integrate and tune SAST/SCA tools

  • Practical knowledge of CJIS and NIST 800-53 control families, including automating checks and evidence generation

Preferred Skills:

  • Experience with EKS, ECS, and Lambda hardening patterns

  • Familiarity with tools such as OPA/Conftest, Checkov, Trivy, Inspector, or CodeQL

  • Basic Azure security automation knowledge for future phases

Duties:

  • Design, author, and maintain AWS CDK constructs and CloudFormation templates, providing Terraform equivalents where required.

  • Implement AWS Config conformance packs, Security Hub standards, and GuardDuty routing in reference accounts.

  • Build and maintain CI/CD security templates in GitHub Actions and Azure DevOps with scanning gates for SAST, SCA, IaC, containers, and secrets.

  • Create reusable CI/CD templates with enforcement gates and exception workflows.

  • Develop compliance-as-code controls aligned with CJIS and NIST 800-53, including evidence exports and auditor-ready artifacts.

  • Harden CDK/CloudFormation modules and pipeline templates as compliance requirements evolve.

  • Coach pilot teams on adopting reference templates and patterns.

  • Raise compliance or enforcement gaps to enterprise teams for org-level action.

Apply: DevSecOps Engineer
* Required fields
First name*
Last name*
Email address*
Location *
Phone number*
Resume*

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or paste resume

Paste your resume here or attach resume file

What’s your citizenship / employment eligibility?*
Desired salary*
Human Check*