DevSecOps Engineer, Public Sector

At Lazarus, we build foundation models to help people solve the world's toughest problems. Enterprise and government clients use our APIs to power products and workflows that keep humans focused on what we do best. We're a venture-backed team headquartered downtown Boston, MA and we share a passion for innovation, growth, and a commitment to the responsible use of AI. 

Job Overview

We are hiring a DevSecOps Engineer, Public Sector to meet the needs of our software development lifecycle. This role will use technical skills for the design and implementation of various CI/CD patterns while abiding by industry standards and company policies. You will often take part in design and code reviews and offer direction to ensure project scoping activities match architectural capabilities, security requirements, and specifications. When new applications are introduced or current ones undergo changes, you will work with stakeholders across the business to provide build solutions. Other responsibilities include documenting DevSecOps processes and ensuring that the DevSecOps platforms are up to date and properly maintained. You will have a significant impact on the organization’s DevSecOps culture as a member of a group in charge of the enterprise’s engineering and maintenance.

Security Clearance: This role requires eligibility for U.S. security clearance based on current or future interactions with domestic and foreign governments.

Responsibilities

• Create, develop, and implement solutions to address infrastructure and security requirements
• Identify the needs for build automation, designing, and implementing CI/CD solutions
• Consult on DevSecOps requirements from diverse set of internal stakeholders and clients 
• Create plug-and-play/reusable solutions and patterns for CI/CD pipelines
• Create, develop, and implement automation and system integration for various build platforms
• Publish and disseminate CI/CD best practices, patterns, and solutions
• Ensure that the service’s uptime and response time SLAs/OLAs are met or surpassed
• Build or maintain CI/CD building blocks and shared libraries proactively for app and development teams to enable quicker build and deployment
• Design action plans to address CIC/D platform/tools/solutions’ shortcomings and difficulties
• Actively participate in bridge calls with team members and clients to prevent or quickly address problems
• Proactively troubleshoot, identify, and fix problems in the DevSecOps domain
• Ensure incident tracking tools are updated in accordance with established norms and processes, gather all essential data and document any discoveries and concerns
• Identify management concerns and problems, assess them, and offer prompt solutions and/or escalation
• Align with technological Systems/Software Development Life Cycle (SDLC) processes and industry-standard service management principles (such as ITIL)
• Create and publish engineering platforms and solutions

Requirements

• Practical experience with AWS cloud environments
• Comprehensive technical expertise in a variety of DevSecOps toolkits, including Ansible, Jenkins, Artifactory, Jira, Black Duck, terraform, Git/Version Control Software, or comparable technologies
• Familiarity with information security frameworks and standards 
• Knowledge of DevOps Automation (terraform, GitHub, GitHub Actions)
• Knowledge of Prisma Cloud, SIEM, SOC, Nessus, CrowdStrike or similar services
• Familiarity with API Security, Container Security, AWS Cloud Security
• Knowledge of FedRAMP/US government development environments and the associated certification and audit processes
• Familiarity with Amazon AWS policy, configuration, and security management tools
• Experience with security automation and machine learning
• Proven capacity for out-of-the-box thinking, leadership, and a highly creative problem-solver
• Excellent analytical and interpersonal skills
• Ability to express technical information clearly at different organizational levels
• Bachelor’s degree in a relevant field

Nice-to-haves

• Active security clearance (preferably TS/SCI)
• Hands on experience with AWS tooling HEAVILY preferred
• AWS Certified DevOps Engineer - Professional
• CISM, CISSP or other Security Certifications
• Auditing and Compliance Certifications such as CISA, PCI-ISA, and PCIP

Benefits

• Comprehensive benefits package, including health insurance, dental insurance, and vision insurance, and access to a 401k
• Flexible working from home arrangements
• Opportunities for growth and professional development
• Access to cutting-edge technology and resources for research and development
• Compensation (commensurate with experience): $110,000 - $125,000 (base salary) + bonus + equity

Lazarus AI is an equal opportunity employer. We are committed to equal employment opportunity and nondiscrimination for all employees and qualified applicants without regard to a person's race, color, gender, age, religion, national origin, ancestry, disability, veteran status, genetic information, sexual orientation or any characteristic protected under applicable law. We do not tolerate discrimination or harassment of any kind. This applies to every aspect of employment at Lazarus, including, but not limited to, employment, training, promotion, demotion, transfer, leaves of absence and termination.