DevOps / DevSecOps Engineer / GCP : W2 Role

About the position

DevSecOps Engineer (Google Cloud Platform – ITAR Environment) Location: Bloomington, MN. (Hybrid) Long term contract Required Qualifications 5+ years of experience in DevOps, Cloud Engineering, or DevSecOps roles. Hands-on experience with Google Cloud Platform (GCP) . Strong experience with CI/CD pipeline development . Experience with Infrastructure as Code Experience with containerization and Kubernetes . Knowledge of secure software development practices . Experience with cloud security frameworks and compliance requirements . Key Responsibilities Cloud & Infrastructure Security Design, implement, and maintain secure cloud infrastructure in Google Cloud Platform (GCP) . Implement security controls, monitoring, and compliance automation aligned with ITAR, NIST, CMMC and corporate security standards . Configure and maintain IAM policies, network segmentation, and secure access controls . DevSecOps & CI/CD Build and maintain secure CI/CD pipelines using tools such as: Jenkins GitLab CI/CD GitHub Actions Cloud Build Integrate automated security scanning into pipelines including: SAST DAST container vulnerability scanning dependency scanning Automate infrastructure deployments using Infrastructure as Code (IaC) tools. Container & Platform Security Secure containerized workloads running on GKE (Google Kubernetes Engine) . Implement container security best practices including: image scanning runtime protection secrets management Maintain Kubernetes security configurations and policies.

Responsibilities
• Design, implement, and maintain secure cloud infrastructure in Google Cloud Platform (GCP)
• Implement security controls, monitoring, and compliance automation aligned with ITAR, NIST, CMMC and corporate security standards
• Configure and maintain IAM policies, network segmentation, and secure access controls
• Build and maintain secure CI/CD pipelines using tools such as: Jenkins GitLab CI/CD GitHub Actions Cloud Build
• Integrate automated security scanning into pipelines including: SAST DAST container vulnerability scanning dependency scanning
• Automate infrastructure deployments using Infrastructure as Code (IaC) tools
• Secure containerized workloads running on GKE (Google Kubernetes Engine)
• Implement container security best practices including: image scanning runtime protection secrets management
• Maintain Kubernetes security configurations and policies.

Requirements
• 5+ years of experience in DevOps, Cloud Engineering, or DevSecOps roles
• Hands-on experience with Google Cloud Platform (GCP)
• Strong experience with CI/CD pipeline development
• Experience with Infrastructure as Code
• Experience with containerization and Kubernetes
• Knowledge of secure software development practices
• Experience with cloud security frameworks and compliance requirements