Sr AWS DevSecOps Engineer

What success looks like in this role:

• DevSecOps Pipeline Design & Automation: Design and implement secure automated CI/CD pipelines in AWS using tools like AWS CodePipeline Jenkins GitLab CI and other DevOps tools while ensuring security is built into every phase of development from code to production.
• Cloud Infrastructure Security: Architect configure and maintain secure AWS infrastructure using best practices in identity and access management (IAM) networking encryption and more with a focus on risk mitigation and compliance.
• Security Integration: Integrate security tools and practices into the DevOps lifecycle including code scanning vulnerability assessments compliance checks and automated security testing.
• Security Monitoring & Incident Response: Continuously monitor AWS environments for security vulnerabilities and performance issues. Implement proactive monitoring tools (e.g. AWS CloudTrail GuardDuty AWS Security Hub) and lead incident response efforts to mitigate threats.
• Automation & Infrastructure as Code (IaC): Leverage tools like Terraform AWS CloudFormation and the AWS CLI to automate the deployment and management of secure infrastructure.
• Risk Management & Compliance: Ensure that AWSbased applications and systems adhere to industry standards and compliance frameworks (e.g. SOC 2 GDPR PCIDSS) by implementing and maintaining security controls and audits.
• Collaboration & Mentoring: Work closely with development security and operations teams to ensure seamless integration of security into the DevOps pipeline. Mentor and guide junior engineers on best practices for security in DevOps environments.
• Continuous Improvement: Stay uptodate with the latest trends tools and best practices in DevSecOps AWS and cloud security. Proactively recommend improvements to systems and processes for better security posture performance and costefficiency.
• Documentation & Reporting: Maintain detailed documentation for DevSecOps processes including security configurations vulnerability reports and incident responses.

#LIBN1

You will be successful in this role if you have:

Skills & Qualifications:

• Experience: 8 years of handson experience in DevOps with at least 5 years focusing on AWS cloud environments and security integration in the DevOps lifecycle.
• AWS Services Expertise: Strong knowledge of core AWS services including EC2 VPC IAM Lambda S3 RDS and CloudWatch. Experience with securityfocused AWS services such as AWS Security Hub GuardDuty and KMS is required.
• DevOps Tools: Proficiency in DevOps tools for CI/CD pipelines including AWS CodePipeline Jenkins GitLab CI or similar. Experience with containerization and orchestration tools (e.g. Docker Kubernetes Amazon EKS).
• Security Tools & Practices: Experience with automated security tools such as Snyk Checkmarx SonarQube or others for static and dynamic code analysis as well as infrastructure scanning tools like AWS Config and Prisma Cloud.
• Infrastructure as Code (IaC): Handson experience using Terraform AWS CloudFormation or similar IaC tools to automate secure cloud infrastructure.
• Compliance & Risk Management: Expertise in implementing security controls vulnerability management and compliance frameworks (SOC 2 ISO 27001 GDPR PCIDSS etc. in cloud environments.
• Security Architecture & Practices: Strong understanding of security best practices including encryption (at rest and in transit) identity and access management (IAM) network segmentation and secure coding practices.
• Scripting & Automation: Proficiency in scripting languages (Python Bash or PowerShell) for automation of security and operational tasks.
• Monitoring & Logging: Experience with AWS security and monitoring tools like CloudWatch CloudTrail GuardDuty and AWS Config as well as thirdparty monitoring solutions.
• Incident Response & Forensics: Ability to respond to and investigate security incidents conduct root cause analysis and implement preventive measures.
• Certifications: AWS Certified DevOps Engineer Professional AWS Certified Security Specialty or similar certifications are highly preferred.
• Communication Skills: Strong written and verbal communication skills with the ability to explain security concepts to nontechnical stakeholders.

Preferred Qualifications:

• Familiarity with container security and microservices architectures.
• Knowledge of serverless security practices (AWS Lambda API Gateway etc..
• Experience with multicloud or hybrid cloud environments.
• Familiarity with compliance auditing tools like AWS Audit Manager.
• Exposure to security testing frameworks such as OWASP SANS or NIST.

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age blood type caste citizenship color disability family medical history family status ethnicity gender gender expression gender identity genetic information marital status national origin parental status pregnancy race religion sex sexual orientation transgender status veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein or cannot otherwise complete your expression of interest without additional assistance and would like to discuss a request for reasonable accommodation please contact our Global Recruiting organization at or alternatively Toll Free:(Prompt 4. US job seekers can find more information about Unisys EEO commitment here.