Title: AWS DevSecOps Engineer Location: Houston, TX (Onsite) Job Type: 12 Months Contract Client: Infosys Job Description In this role, the resource will be responsible for designing, implementing, and securing cloud-native architectures on AWS. You’ll drive infrastructure automation, enforce DevSecOps best practices, and play a key role in integrating identity, access, and API security layers into our platform. This position demands strong expertise in AWS, Terraform, Okta, Kong (or similar API gateways), and security-focused DevOps tooling. Key Responsibilities: • Architect and manage secure, scalable, and highly available infrastructure on AWS • Implement and manage infrastructure as code using Terraform • Integrate and maintain Okta for identity and access management (IAM) across systems and services • Deploy and manage API gateways/proxies (e.g., Kong) for secure and scalable API access • Design and enforce CI/CD pipelines with security gates embedded • Automate security scanning, secrets management, and compliance validation • Implement cloud-native security best practices across workloads, containers, APIs, and users • Work with application teams to define and enforce least privilege, zero trust, and API access control policies • Support incident response and root cause analysis related to cloud infrastructure and platform security • Partner with engineering, QA, and InfoSec teams to embed security throughout the SDLC Required Skills & Qualifications: • 8+ years of experience in DevOps, Cloud Infrastructure, or Security Engineering roles • Strong hands-on experience with AWS services (EC2, IAM, VPC, S3, RDS, ECS/EKS, Lambda, etc.) • Deep expertise in Terraform for infrastructure provisioning and compliance • Experience managing Okta or similar SSO/IAM platforms in a complex multi-app environment • Solid understanding of API management and experience with Kong, AWS API Gateway, or similar platforms • Familiarity with OAuth2, OIDC, SAML, and API security models • Experience with CI/CD tools (e.g., GitHub Actions, GitLab, Jenkins, or AWS CodePipeline) • Proficiency in scripting with Python, Bash, or similar • Understanding of DevSecOps principles and integrating security in automated pipelines • Experience with secrets management tools like Vault, AWS Secrets Manager, or SSM • Strong knowledge of cloud networking, firewalls, and security controls Preferred/Bonus Skills: • Experience with containerization and Kubernetes (EKS) security best practices • Exposure to compliance frameworks like SOC 2, ISO 27001, NIST, etc. • Experience with SIEMs or logging platforms (e.g., Datadog, Splunk, CloudWatch) • Familiarity with automated security testing (SAST, DAST, IAST) • AWS certifications (e.g., AWS Security Specialty, DevOps Professional) Thanks & Regards Alok Ranjan Pathak | Team Lead - US Staffing Email: Alok.ranjan@ampstek.com | Desk: (609) 360-2613 Ampstek LLC – Global IT Partner | www.ampstek.com