Company Name: MissionSquare Retirement Job Details: Hiring,Remotely,in,District,of,Columbia,Remote,128K-206K,Annually,Expert/Leader Job Url: https://builtin.com/job/expert-devsecops-engineer/7913451 Job Description: Join a great place to work with MissionSquare, a financial services corporation with approximately $79 billion in assets under management and administration and over 600 employees. Founded in 1972, MissionSquare is dedicated to the retirement needs of public sector employees. We focus on delivering results-oriented retirement and retiree health savings plans, education, investment options, personalized guidance, and related services to public sector participants in more than 9,200 plans and nearly 2 million participant accounts. We strive to make the administration of retirement programs as easy and cost-effective as possible. We have an extraordinary talent base and invite you to consider joining MissionSquare.$128,490.00 - $205,580.00The DevSecOps Engineer is a highly technical role responsible for supporting, securing, managing, and deploying solutions aligned with business objectives. Candidates must have strong expertise in information security, infrastructure, software development, and operating systems, as well as an understanding of business strategy and operational needs in a fast-paced environment. This role integrates security into CI/CD pipelines, ensuring automation and compliance with security principles. DevSecOps Engineers collaborate closely with developers, system engineers, cybersecurity teams, and administrators to deliver secure, reliable solutions. They demonstrate strong analytical skills, adaptability, and the ability to meet change requests quickly, while maintaining superior communication and teamwork. With a security-first mindset, DevSecOps Engineers continuously assess threats, manage enterprise risk, and support integration and deployment requirements across multidisciplinary teamsEssential Functions for this role include:Build relationships with developers, stakeholders and scrum master’s to incorporate security principles into engineering design and deploymentsSupervise testing and validation in application security controls across projectsOversee implementation of defensive practices and countermeasures across infrastructure and applicationsUphold CI/CD security strategy and practices in tandem with other technical team leadsServe as a point of contact for security-based escalations and remain tightly involved through resolutionBuild services and tools to enable developers and engineers to easily use security components produced by application security team membersSimplify automation that applies security inter-workings with CI/CD pipelines.Support the ability to “shift left” and incorporate security early on and throughout the development lifecycleIdentify vulnerabilities in code through automated and manual assessments and promote quick remediationProven experience with SAST, SCA, DAST, IaC scanningStrong experience using Cloud security architecture (IAM, containers, baseline)Understanding of threat modelingPerforms other duties as assignedIf you have the following skills, we encourage you to apply:Bachelor’s degree (BA/BS) in Finance, Accounting, Business, or a related field, or equivalent professional experienceAt least 7+ years’ experience in information technology, information security administration or security operationsExperience with agile workflows, including Scrum and Kanban.Understanding of containers (e.g., Docker) and container orchestration (e.g., Docker Swarm, Kubernetes)Understanding of CloudFormation, Terraform, Ansible and JenkinsProficient in securing Windows and *nix operating systems, endpoint applications, networking protocols and devicesProven experience with operations and security across Amazon Web Services (AWS) and Microsoft Azure     Proven experience with GitHub ActionsHands on experience with WIZHands on experience with application security testing (BURP)Ability to obtain and maintain technical team and business support influences a collaborative effort to reduce the attack surface while performing rapid, continuous implementationCapable of scripting in Python, Bash, Perl or PowerShellUnderstanding of OWASP, CVSS, the MITRE ATT&CK framework and the software development lifecycle (SLDC)Preferred Certifications: CISSP, GIAC (GCSA, GWAPT), AWS (SSA) To benefit your career and support your wellbeing, we offer:Competitive Total Rewards package, including base pay, incentive programs, benefits, and a 401(k) plan with matching contributionsFlexible and hybrid work schedules to support work-life balanceTuition reimbursement to support continued educationProfessional and career development opportunities, including courses and certificationsComprehensive wellness programs promoting physical, mental, and emotional healthVolunteerism initiatives to encourage community engagementClick here to learn more about MissionSquare’s benefits.Equal Employment OpportunityAs a company, MissionSquare is an Equal Opportunity Employer. We strive to create an environment that reflects the value and diversity of our employees and fosters respect among them. We believe that talent from diverse backgrounds will further enhance our ability, and mission, to serve those who serve their communities.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, or any other protected classifications under any applicable law.This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.