Principal Cyber Security Engineer

ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work™

ASRC Federal is seeking an experienced Cybersecurity Engineer, to assess the maturity of the DevSecOps environment on an application basis. This position is REMOTE.
Requirements:
• Must be a US Citizen able to obtain an agency-specific suitability / public trust clearance prior to starting.
• Experience supporting a Federal Government Agency, either civilian or DOD, USCIS preferred.
• Bachelor’s in Computer Science or a related field and 10+ years experience preferred.
• Certifications in: AWS Certified Developer – Associate, AWS DevOps Engineer – Professional, and Checkmarx Developer
Desired Skills:
• Hands-on experience with Terraform, AWS CDK (Python), and Ansible for Infrastructure as Code (IaC)
• Demonstrated experience managing CI/CD pipelines using Jenkins, GitHub Actions, AWS CodePipeline, and Azure DevOps
• Extensive Kubernetes experience (EKS, Rancher, OpenShift), including Helm charts, autoscaling policies, container orchestration, and Kubernetes RBAC and secrets management
• Experience implementing DevSecOps security practices, including vulnerability scanning (Checkmarx, Nessus), compliance monitoring (AWS Security Hub, GuardDuty), and IAM least privilege access
• Strong cloud infrastructure experience across AWS GovCloud, Azure, and GCP environments
• Experience integrating with security tools like AWS WAF, Okta SAML, HashiCorp Vault, and Burp Suite
• Proficient in Python, Bash, and PowerShell scripting for automation
• Experience deploying microservices, managing monolith-to-microservice migrations, and using tools like Docker, Artifactory, and Splunk

Responsibilities:
• Responsible for designing, advising, and training software development teams on automation and integration activities necessary for DevSecOps workflows in accordance with ZT requirements at the optimal level.
• Will need to apply experience and advanced knowledge of software development security principles and approaches to develop plans and techniques and implement tools to improve ZT maturity.
• Create and maintain technical documentation.
• Solution design, development, integration, and testing.
• Will need to understand the current state of applications to include the existing environments and Operating Systems (OS) and technical restrictions that may be present with legacy code.
• Developing, integrating, and implementing solutions to diverse, complex problems.
• Will define, plan, and organize assigned resources to accomplish organizational objectives.

We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.

EEO Statement
ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.