DevSecOps Engineer (Google Cloud Platform – ITAR Environment)
Bloomington, MN.
Long term contract
Position Summary
We are seeking a DevSecOps Engineer to support the design, implementation, and continuous improvement of secure cloud infrastructure and software delivery pipelines within a Google Cloud Platform (GCP) environment.
This role will work closely with engineering, security, and infrastructure teams to integrate security practices into CI/CD pipelines while ensuring compliance with ITAR and other regulatory requirements.
The ideal candidate will have experience building secure, automated cloud platforms, embedding security controls into development pipelines, and supporting high-availability manufacturing or regulated environments.
Key Responsibilities
Cloud & Infrastructure Security
• Design, implement, and maintain secure cloud infrastructure in Google Cloud Platform (GCP).
• Implement security controls, monitoring, and compliance automation aligned with ITAR, NIST, CMMC and corporate security standards.
• Configure and maintain IAM policies, network segmentation, and secure access controls.
DevSecOps & CI/CD
• Build and maintain secure CI/CD pipelines using tools such as:
• Jenkins
• GitLab CI/CD
• GitHub Actions
• Cloud Build
• Integrate automated security scanning into pipelines including:
• SAST
• DAST
• container vulnerability scanning
• dependency scanning
• Automate infrastructure deployments using Infrastructure as Code (IaC) tools.