We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
BDO USA, LLP jobs

Application DevSecOps Engineer

BDO USA, LLP
5300 Patterson Avenue Southeast (Show on map)
Mar 25, 2026

Job Summary:

The DevSecOps Engineer will be responsible for integrating security practices into the DevOps process, ensuring that security is embedded throughout the software development lifecycle. This role will collaborate with development, operations, and security teams to automate security controls, manage vulnerabilities, and maintain compliance with industry standards.

Job Duties:



  • Integrates security scanning tools (SAST, DAST, container scanning) into CI/CD pipelines to automatically detect vulnerabilities during code builds and deployments
  • Continuously monitors cloud environments (AWS, Azure, GCP) and applications for security threats, misconfigurations, and compliance violations
  • Reviews vulnerability reports, prioritize issues, and coordinate with development and operations teams to apply patches or remediation steps
  • Ensures secure management of credentials, secrets, and API keys using vaults or cloud-native solutions; regularly review and update access controls
  • Assists in investigating security alerts, analyzing logs, and responding to incidents affecting applications or cloud infrastructure.
  • Works closely with developers, cloud engineers, and security analysts to embed security into design, development, and deployment processes.
  • Evaluates, deploys, and updates security tools and platforms; ensure they are properly configured and integrated with existing workflows
  • Maintains up-to-date documentation for security controls, processes, and incident response procedures
  • Provides guidance and training to development and operations teams on secure coding, cloud security, and DevSecOps best practices
  • Reviews code for security issues and ensure adherence to secure coding standards
  • Ensures systems and processes meet regulatory and client requirements (e.g., GDPR, SOC 2, HIPAA)


Supervisory Responsibilities:



  • N/A


Qualifications, Knowledge, Skills and Abilities:

Education:



  • High School diploma or GED, required
  • Bachelor's degree in Computer Science, Information Systems, preferred


Experience:



  • 3+ years of experience in DevSecOps, Cloud Security, or related roles, required
  • Understanding of vulnerability management, risk assessment, and remediation processes, required
  • Relevant certifications (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate, GIAC DevSecOps, CISSP, or similar), preferred
  • Familiarity with identity and access management (IAM), secrets management (e.g., HashiCorp Vault, AWS Secrets Manager), and API security, preferred
  • Experience with CI/CD pipelines and integrating security tools, preferred
  • Hands-on experience with cloud platforms (AWS, Azure, GCP). preferred
  • Familiarity with regulatory frameworks (e.g., GDPR, SOC 2, HIPAA). preferred
  • Deep understanding of DevOps principles and secure software development lifecycle (SDLC). preferred
  • Knowledge of security scanning tools: SAST, DAST, container/image scanning (e.g., SonarQube, Checkmarx, Snyk). preferred
  • Proficiency in cloud security best practices and cloud-native security services (e.g., AWS Security Hub, Azure Security Center, GCP Security Command Center). preferred
  • Awareness of incident response processes and log analysis, preferred
  • Knowledge of secure coding standards (e.g., OWASP Top 10, CWE/SANS Top 25), preferred
  • Understanding of compliance requirements and how to implement controls to meet them, preferred


License/Certifications:



  • Certifications in Microsoft AZ-900, AZ-204, AZ-400, preferred


Software:



  • Experience with the following products, preferred:

    • Microsoft Azure Dev Ops or Github
    • Microsoft Azure and Azure Portal
    • Automation tools; Terraform, PowerShell, Wiz, and / or Graph API
    • Application Security Monitoring Tools
    • Microsoft Visual Studio
    • Microsoft SQL Server and/or Azure SQL DB



Language:



  • N/A


Other Knowledge, Skills & Abilities:



  • Strong verbal and written communication skills
  • Excellent interpersonal and customer relationship skills
  • Capacity to work in a deadline-driven environment while handle multiple complex projects/tasks simultaneously with a focus on details
  • Capable of successfully multi-tasking while working independently or within a group environment
  • Ability to rely on extensive experience and judgment to plan and accomplish goals
  • Capable of working well under pressure while dealing with unexpected problems in a professional manner
  • Capacity to communicate and interact with all levels of employees and management
  • Ability to interact and build relationships and consensus among people
  • Advanced knowledge of concepts, practices and procedures within the software development industry
  • Strong information technology architecture and design skills
  • Capacity to consistently produce clean code and adhere to appropriate documentation standards



Individual salaries that are offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate's qualifications, experience, skills, and geography.

National Range: $85,000 - $110,000 Maryland Range: $85,000 - $110,000
NYC/Long Island/Westchester Range: $85,000 - $110,000

Applied = 0
MORE JOBS LIKE THIS

(web-bd9584865-ksnsn)