DevOps / DevSecOps Engineer / GCP : W2 Role

About the position DevSecOps Engineer (Google Cloud Platform – ITAR Environment) Location: Bloomington, MN. (Hybrid) Long term contract Required Qualifications 5+ years of experience in DevOps, Cloud Engineering, or DevSecOps roles. Hands-on experience with Google Cloud Platform (GCP) . Strong experience with CI/CD pipeline development . Experience with Infrastructure as Code Experience with containerization and Kubernetes . Knowledge of secure software development practices . Experience with cloud security frameworks and compliance requirements . Key Responsibilities Cloud & Infrastructure Security Design, implement, and maintain secure cloud infrastructure in Google Cloud Platform (GCP) . Implement security controls, monitoring, and compliance automation aligned with ITAR, NIST, CMMC and corporate security standards . Configure and maintain IAM policies, network segmentation, and secure access controls . DevSecOps & CI/CD Build and maintain secure CI/CD pipelines using tools such as: Jenkins GitLab CI/CD GitHub Actions Cloud Build Integrate automated security scanning into pipelines including: SAST DAST container vulnerability scanning dependency scanning Automate infrastructure deployments using Infrastructure as Code (IaC) tools. Container & Platform Security Secure containerized workloads running on GKE (Google Kubernetes Engine) . Implement container security best practices including: image scanning runtime protection secrets management Maintain Kubernetes security configurations and policies. Responsibilities • Design, implement, and maintain secure cloud infrastructure in Google Cloud Platform (GCP) • Implement security controls, monitoring, and compliance automation aligned with ITAR, NIST, CMMC and corporate security standards • Configure and maintain IAM policies, network segmentation, and secure access controls • Build and maintain secure CI/CD pipelines using tools such as: Jenkins GitLab CI/CD GitHub Actions Cloud Build • Integrate automated security scanning into pipelines including: SAST DAST container vulnerability scanning dependency scanning • Automate infrastructure deployments using Infrastructure as Code (IaC) tools • Secure containerized workloads running on GKE (Google Kubernetes Engine) • Implement container security best practices including: image scanning runtime protection secrets management • Maintain Kubernetes security configurations and policies. Requirements • 5+ years of experience in DevOps, Cloud Engineering, or DevSecOps roles • Hands-on experience with Google Cloud Platform (GCP) • Strong experience with CI/CD pipeline development • Experience with Infrastructure as Code • Experience with containerization and Kubernetes • Knowledge of secure software development practices • Experience with cloud security frameworks and compliance requirements