DevOps Engineer
β - Featured Role | Apply direct with Data Freelance Hub
This role is for a DevOps Engineer on a hybrid 9+ month contract in Mechanicsburg, PA, with a pay rate of "unknown." Key skills include 5+ years in AWS security automation, AWS CDK, CloudFormation, and CI/CD authoring. Familiarity with CJIS and NIST 800-53 is required.
π - Country
United States
π± - Currency
$ USD
-
π° - Day rate
-
ποΈ - Date discovered
September 27, 2025
π - Project duration
More than 6 months
-
ποΈ - Location type
Hybrid
-
π - Contract type
Unknown
-
π - Security clearance
Unknown
-
π - Location detailed
Mechanicsburg, PA
-
π§ - Skills detailed
#Consulting #Azure Security #DevOps #AWS (Amazon Web Services) #Infrastructure as Code (IaC) #Containers #Bash #IAM (Identity and Access Management) #Cloud #Lambda (AWS Lambda) #Scala #Python #Azure #Security #Automation #Java #Compliance #Azure DevOps #C# #GitHub #Terraform #Logging
Role description
Dice is the leading career destination for tech experts at every stage of their careers. Our client, Vector Consulting, Inc, is seeking the following. Apply via Dice today!
Our government client is looking for an experienced DevOps Engineer on a hybrid 9+ months renewable contract role in Mechanicsburg, PA.
Position- DevOps Engineer
Job Overview:
Hands-on security automation for AWS delivery. Build secure-by-default CDK constructs and CloudFormation templates, wire them into CI/CD, and enforce compliance checks that map to CJIS and NIST. Azure support is a future consideration, not a core day-one duty.
Scope boundaries
β’ Does not own enterprise AWS Organizations or SCP operations.
β’ Designs and builds reference guardrails and enforcement patterns that can be deployed by enterprise teams.
β’ Focuses on preventive controls and compliance automation, not incident response.
What you will deliver
First 90 days
β’ Pipeline security templates in GitHub Actions and Azure DevOps with SAST, SCA, IaC, container, and secret scanning gates.
β’ Compliance as code in reference accounts: AWS Config rules and Security Hub standards aligned to CJIS and NIST 800-53, with exceptions workflow documented.
β’ IaC reference modules using AWS CDK and CloudFormation for IAM least privilege, KMS, Secrets Manager, logging, and network baselines; Terraform equivalents provided where teams require them.
β’ Evidence exports tying checks to control IDs and producing auditor-ready artifacts.
Ongoing
β’ Harden CDK/CFT modules and pipeline templates as compliance needs evolve.
β’ Coach pilot teams to adopt templates.
β’ Raise gaps to enterprise teams for org-level enforcement.
Day-to-day responsibilities
β’ Author and maintain AWS CDK constructs and CloudFormation templates; provide Terraform versions as secondary.
β’ Implement AWS Config conformance, Security Hub standards, and GuardDuty routing in reference accounts.
β’ Wire scanning in CI/CD for app code, containers, and IaC.
β’ Create reusable GitHub/Azure DevOps templates with enforcement gates and exception handling.
β’ Generate posture and evidence reports mapped to CJIS and NIST controls.
Required skills
β’ 5+ years AWS security automation and DevOps.
β’ Strong with AWS CDK and CloudFormation; working proficiency in Terraform.
β’ CI/CD authoring in GitHub Actions and Azure DevOps.
β’ Proficient in Python and Bash, with PowerShell for Windows automation.
β’ Able to read Java and C# to integrate and tune SAST/SCA.
β’ Practical knowledge of CJIS and NIST 800-53 control families and how to automate checks and evidence.
Nice to have
β’ EKS/ECS/Lambda hardening patterns.
β’ OPA/Conftest, Checkov, Trivy, Inspector, CodeQL or equivalent.
β’ Basic Azure security automation for future phases.
Decision rights
Independent on design and build within standards; proposes guardrails and reference patterns; escalates enterprise-wide changes.
Required/Desired Experience:
β’ 5 years of AWS security automation and DevOps Required
β’ Strong with AWS CDK and CloudFormation; working proficiency in Terraform Required
β’ CI/CD authoring in GitHub Actions and Azure DevOps Required
β’ Proficient in Python and Bash, with PowerShell for Windows automation Required
β’ Able to read Java and C# to integrate and tune SAST/SCA Required
β’ Practical knowledge of CJIS and NIST 800-53 control families and how to automate checks and evidence Required
β’ EKS/ECS/Lambda hardening patterns Nice to have
β’ OPA/Conftest, Checkov, Trivy, Inspector, CodeQL or equivalent Nice to have
β’ Basic Azure security automation for future phases Nice to have
About Vector:
Vector Consulting, Inc., (Headquartered in Atlanta) is an IT Talent Acquisition Solutions firm committed to delivering results. Since our founding in 1990, we have been partnering with our customers, understanding their business, and developing solutions with a commitment to quality, reliability and value. Our continuing growth has been and continues to be built around successful relationships that are based on our organization's operating philosophy and commitment to
β’
β’ People, Partnerships, Purpose and Performance - THE VECTOR WAY
βCelebrating 30 years of service.β
Dice is the leading career destination for tech experts at every stage of their careers. Our client, Vector Consulting, Inc, is seeking the following. Apply via Dice today!
Our government client is looking for an experienced DevOps Engineer on a hybrid 9+ months renewable contract role in Mechanicsburg, PA.
Position- DevOps Engineer
Job Overview:
Hands-on security automation for AWS delivery. Build secure-by-default CDK constructs and CloudFormation templates, wire them into CI/CD, and enforce compliance checks that map to CJIS and NIST. Azure support is a future consideration, not a core day-one duty.
Scope boundaries
β’ Does not own enterprise AWS Organizations or SCP operations.
β’ Designs and builds reference guardrails and enforcement patterns that can be deployed by enterprise teams.
β’ Focuses on preventive controls and compliance automation, not incident response.
What you will deliver
First 90 days
β’ Pipeline security templates in GitHub Actions and Azure DevOps with SAST, SCA, IaC, container, and secret scanning gates.
β’ Compliance as code in reference accounts: AWS Config rules and Security Hub standards aligned to CJIS and NIST 800-53, with exceptions workflow documented.
β’ IaC reference modules using AWS CDK and CloudFormation for IAM least privilege, KMS, Secrets Manager, logging, and network baselines; Terraform equivalents provided where teams require them.
β’ Evidence exports tying checks to control IDs and producing auditor-ready artifacts.
Ongoing
β’ Harden CDK/CFT modules and pipeline templates as compliance needs evolve.
β’ Coach pilot teams to adopt templates.
β’ Raise gaps to enterprise teams for org-level enforcement.
Day-to-day responsibilities
β’ Author and maintain AWS CDK constructs and CloudFormation templates; provide Terraform versions as secondary.
β’ Implement AWS Config conformance, Security Hub standards, and GuardDuty routing in reference accounts.
β’ Wire scanning in CI/CD for app code, containers, and IaC.
β’ Create reusable GitHub/Azure DevOps templates with enforcement gates and exception handling.
β’ Generate posture and evidence reports mapped to CJIS and NIST controls.
Required skills
β’ 5+ years AWS security automation and DevOps.
β’ Strong with AWS CDK and CloudFormation; working proficiency in Terraform.
β’ CI/CD authoring in GitHub Actions and Azure DevOps.
β’ Proficient in Python and Bash, with PowerShell for Windows automation.
β’ Able to read Java and C# to integrate and tune SAST/SCA.
β’ Practical knowledge of CJIS and NIST 800-53 control families and how to automate checks and evidence.
Nice to have
β’ EKS/ECS/Lambda hardening patterns.
β’ OPA/Conftest, Checkov, Trivy, Inspector, CodeQL or equivalent.
β’ Basic Azure security automation for future phases.
Decision rights
Independent on design and build within standards; proposes guardrails and reference patterns; escalates enterprise-wide changes.
Required/Desired Experience:
β’ 5 years of AWS security automation and DevOps Required
β’ Strong with AWS CDK and CloudFormation; working proficiency in Terraform Required
β’ CI/CD authoring in GitHub Actions and Azure DevOps Required
β’ Proficient in Python and Bash, with PowerShell for Windows automation Required
β’ Able to read Java and C# to integrate and tune SAST/SCA Required
β’ Practical knowledge of CJIS and NIST 800-53 control families and how to automate checks and evidence Required
β’ EKS/ECS/Lambda hardening patterns Nice to have
β’ OPA/Conftest, Checkov, Trivy, Inspector, CodeQL or equivalent Nice to have
β’ Basic Azure security automation for future phases Nice to have
About Vector:
Vector Consulting, Inc., (Headquartered in Atlanta) is an IT Talent Acquisition Solutions firm committed to delivering results. Since our founding in 1990, we have been partnering with our customers, understanding their business, and developing solutions with a commitment to quality, reliability and value. Our continuing growth has been and continues to be built around successful relationships that are based on our organization's operating philosophy and commitment to
β’
β’ People, Partnerships, Purpose and Performance - THE VECTOR WAY
βCelebrating 30 years of service.β
