Job Summary:

The DevSecOps Engineer will be responsible for integrating security practices into the DevOps process, ensuring that security is embedded throughout the software development lifecycle. This role will collaborate with development, operations, and security teams to automate security controls, manage vulnerabilities, and maintain compliance with industry standards.

Job Duties:

• Integrates security scanning tools (SAST, DAST, container scanning) into CI/CD pipelines to automatically detect vulnerabilities during code builds and deployments
• Continuously monitors cloud environments (AWS, Azure, GCP) and applications for security threats, misconfigurations, and compliance violations
• Reviews vulnerability reports, prioritize issues, and coordinate with development and operations teams to apply patches or remediation steps
• Ensures secure management of credentials, secrets, and API keys using vaults or cloud-native solutions; regularly review and update access controls
• Assists in investigating security alerts, analyzing logs, and responding to incidents affecting applications or cloud infrastructure.
• Works closely with developers, cloud engineers, and security analysts to embed security into design, development, and deployment processes.
• Evaluates, deploys, and updates security tools and platforms; ensure they are properly configured and integrated with existing workflows
• Maintains up-to-date documentation for security controls, processes, and incident response procedures
• Provides guidance and training to development and operations teams on secure coding, cloud security, and DevSecOps best practices
• Reviews code for security issues and ensure adherence to secure coding standards
• Ensures systems and processes meet regulatory and client requirements (e.g., GDPR, SOC 2, HIPAA)

Supervisory Responsibilities:

• N/A

Qualifications, Knowledge, Skills and Abilities:

Education:

• High School diploma or GED, required
• Bachelor’s degree in Computer Science, Information Systems, preferred

Experience:

• 3+ years of experience in DevSecOps, Cloud Security, or related roles, required
• Understanding of vulnerability management, risk assessment, and remediation processes, required
• Relevant certifications (e.g., AWS Certified Security – Specialty, Azure Security Engineer Associate, GIAC DevSecOps, CISSP, or similar), preferred
• Familiarity with identity and access management (IAM), secrets management (e.g., HashiCorp Vault, AWS Secrets Manager), and API security, preferred
• Experience with CI/CD pipelines and integrating security tools, preferred
• Hands-on experience with cloud platforms (AWS, Azure, GCP). preferred
• Familiarity with regulatory frameworks (e.g., GDPR, SOC 2, HIPAA). preferred
• Deep understanding of DevOps principles and secure software development lifecycle (SDLC). preferred
• Knowledge of security scanning tools: SAST, DAST, container/image scanning (e.g., SonarQube, Checkmarx, Snyk). preferred
• Proficiency in cloud security best practices and cloud-native security services (e.g., AWS Security Hub, Azure Security Center, GCP Security Command Center). preferred
• Awareness of incident response processes and log analysis, preferred
• Knowledge of secure coding standards (e.g., OWASP Top 10, CWE/SANS Top 25), preferred
• Understanding of compliance requirements and how to implement controls to meet them, preferred

License/Certifications:

• Certifications in Microsoft AZ-900, AZ-204, AZ-400, preferred

Software:

• Experience with the following products, preferred:
  • Microsoft Azure Dev Ops or Github
  • Microsoft Azure and Azure Portal
  • Automation tools; Terraform, PowerShell, Wiz, and / or Graph API
  • Application Security Monitoring Tools
  • Microsoft Visual Studio
  • Microsoft SQL Server and/or Azure SQL DB

Language:

• N/A

Other Knowledge, Skills & Abilities:

• Strong verbal and written communication skills
• Excellent interpersonal and customer relationship skills
• Capacity to work in a deadline-driven environment while handle multiple complex projects/tasks simultaneously with a focus on details
• Capable of successfully multi-tasking while working independently or within a group environment
• Ability to rely on extensive experience and judgment to plan and accomplish goals
• Capable of working well under pressure while dealing with unexpected problems in a professional manner
• Capacity to communicate and interact with all levels of employees and management
• Ability to interact and build relationships and consensus among people
• Advanced knowledge of concepts, practices and procedures within the software development industry
• Strong information technology architecture and design skills
• Capacity to consistently produce clean code and adhere to appropriate documentation standards

Individual salaries that are offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate’s qualifications, experience, skills, and geography.

National Range: $85,000 - $110,000 Maryland Range: $85,000 - $110,000
NYC/Long Island/Westchester Range: $85,000 - $110,000

Join us at BDO, where you will find more than a career, you’ll find a place where your work is impactful, and you are valued for your individuality. We offer flexibility and opportunities for advancement. Our culture is centered around making meaningful connections, approaching interactions with curiosity, and being true to yourself, all while making a positive difference in the world.

At BDO, our purpose of helping people thrive every day is at the heart of everything we do. Together, we are focused on delivering exceptional and sustainable outcomes and value for our people, our clients, and our communities. BDO is proud to be an ESOP company, reflecting a culture that puts people first, by sharing financially in our growth in value with our U.S. team. BDO professionals provide assurance, tax and advisory services for a diverse range of clients across the U.S. and in over 160 countries through our global organization.

BDO is the first large accounting and advisory organization to implement an Employee Stock Ownership Plan (ESOP). A qualified retirement plan, the ESOP offers participants a stake in the firm’s success through beneficial ownership and a unique opportunity to enhance their financial well-being. The ESOP stands as a compelling addition to our comprehensive compensation and Total Rewards benefits* offerings. The annual allocation to the ESOP is fully funded by BDO through investments in company stock and grants employees the chance to grow their wealth over time as their shares vest and grow in value with the firm’s success, with no employee contributions.

We are committed to delivering exceptional experiences to middle market leaders by sharing insight-driven perspectives, helping companies take business as usual to better than usual. With industry knowledge and experience, a breadth and depth of resources, and unwavering commitment to quality, we pride ourselves on:

• Welcoming diverse perspectives and understanding the experience of our professionals and clients
• Empowering team members to explore their full potential
• Our talented team who brings varying skills, knowledge and experience to proactively help our clients navigate an expanding array of complex challenges and opportunities
• Celebrating ingenuity and innovation to transform our business and help our clients transform theirs
• Focus on resilience and sustainability to positively impact our people, clients, and communities
• BDO Total Rewards that encompass so much more than traditional “benefits.” Click here to find out more!

*Benefits may be subject to eligibility requirements.

Equal Opportunity Employer, including disability/vets