Application Security Engineer - Cloud / DevSecOps

ASRC Federal NetCentric Technology is seeking a highly skilled and innovative Application Security Engineer - Cloud / DevSecOps to join our team in support of our federal government clients. The successful candidate MUST possess an active Secret Security Clearance. This role will focus on developing and implementing security solutions for multi-cloud environments, ensuring the protection of sensitive client information. The ideal candidate will apply their expertise in container security and orchestration, collaborate with cross-functional teams, and drive compliance and security enhancements across the enterprise. Although this position is remote, a local Application Security Engineer - Cloud / DevSecOps in the Alexandria, Virginia area is preferred due to occasional onsite requirements.

Responsibilities:

• Develop and implement security solutions for multi-cloud environments with a focus on container security and orchestration.
• Collaborate with cross-functional teams to design, build, and enhance integrated security solutions and user-focused features.
• Evaluate, implement, and manage third-party cloud security tools and compliance measures.
• Lead the development of SOPs, guidelines, and documentation for secure cloud operations and containerized environments.
• Ensure enterprise application security compliance with NIST 800-53 controls, STIG standards, and vulnerability management.
• Perform risk assessments, remediation, and vulnerability scans to strengthen security posture.
• Drive DevSecOps integration and provide support for cloud migrations and cyber operations.
• Develop technology roadmaps and recommend strategic security advancements for long-term success.

Required Qualifications:

• ActiveSecret Clearance
• Bachelor’s degreein Information Technology, Cybersecurity, or a related field.
• ActiveDoD 8570 IAT Level II certification or greater, including at least one of the following certifications in good standing: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+CE, CCNP Security, CISA, CISSP (or Associate),
• 7+ years of relevant IT or Cybersecurity experience, with at least 3 years of direct expertise in multi-cloud platforms (AWS, Azure, Google Cloud), containerization technologies (Kubernetes, Docker), and DevSecOps practices.
• RedHat Advanced Cluster Security for Kubernetes experience.
• DevSecOps knowledge and experience.
• Hands-on experience in scripting such as Python, or Bash and configuration automation tools, such as Ansible, Puppet or Chef.
• Hands-on experience in CI/CD tools such as GitLab, CI/CD or Jenkins.
• Expertise in cybersecurity frameworks (NIST 800-53, STIGs), risk assessment, vulnerability management, and compliance.
• Proven skills in enterprise-level architecture and implementing secure systems for large-scale organizations.
• Onsite travel to Alexandria, Virginia will be occasionally required.

Why ASRC?  

As a wholly owned subsidiary of Arctic Slope Regional Corporation, an Alaska Native Corporation, we are inspired by the Iñupiat culture. We embrace stewardship and the idea of using every resource effectively; teamwork when striving to achieve goals and building a collaborative environment; integrity in adhering to high moral principles and professional standards; respect in welcoming and regarding the differing opinions, experiences, rights and traditions of others; accountability in that we meet our commitments and take responsibility for our results; and continuous improvement, always striving to make things better, raising the bar and staying humble. 

Advantages of Working at ASRC Federal: 

• Purpose-Driven Careers: Join a company recognized as a: 

• Certified Great Place to Work 

• Military Times’ Best for Vets Employer 

• Military.com’s Top 25 Veteran Employer 

• Comprehensive Benefits: 

• Insurance Coverage: Comprehensive plans for medical, dental, vision, life insurance, and short-term/long-term disability 

• Paid Leave: Inclusive policies for bereavement, military obligations, and parental needs, along with 11 paid holidays annually 

• Retirement Savings: A 401(k) plan with a generous company match and immediate vesting to help secure your financial future 

• Incentives: Employee referral bonuses to reward you for helping grow the ASRC Federal Family 

• Learning and Development: 

• After 90 days of employment, regular full-time employees are eligible for our professional development program. This includes annual funding for: 

• Pursuing Associate’s, Bachelor’s, or Graduate Degrees 

• Obtaining industry-standard professional certifications 

• Participating in professional certificate programs 

• Covering registration fees for professional conferences 

• Centers of Excellence: We established the Centers of Excellence to build, leverage and grow our technological capabilities, best practices and offer professional development for our technical teams.  They contain many Communities of Practice which are forums that offer a platform to share ideas, best practices, innovations, and to collaborate with technical peers. 

Embark on a career with ASRC Federal, where your growth, purpose, and well-being are at the forefront of what we do!