USA_Engineer

Role: USA_Engineer Location: Boston, MA Duration: 12 months Client: TCS Visa Restrictions: None Rate:$ 60-80/hr on C2C Bill Rate: $70.00 - $90.00 Skills: Category Name Required Importance Experience SkillCategoryTest1_MN Digital : Cloud DevOps Yes 1 7+ years SkillCategoryTest1_MN Digital : Kubernetes Yes 1 7+ years GBaMS ReqID: 10483062 Role Description: Key Responsibilities 1. Secure SDLC Application Security Embed security controls at every stage of the SDLC.Conduct threat modeling, secure code reviews, and risk assessments.Implement SAST, DAST, SCA tools and interpret results for development teams.Enforce secure coding standards and promote security-first development culture. 2. CICD Pipeline Security Build and maintain secure CICD pipelines (GitHub Actions, GitLab CI, Jenkins, Azure DevOps).Automate security scanning and policy enforcement in build and deployment tegrate secrets management and environment hardening into pipelines. 3. Cloud Infrastructure Security Implement Infrastructure as Code (IaC) security reviews using Terraform, CloudFormation, ARM, or Pulumi.Validate and enforce cloud security best practices (AWS, Azure, GCP).Deploy and maintain cloud-native security tools such as AWS GuardDuty, Azure Defender, GCP SCC. 4. Container Kubernetes Security Build secure container images and manage scanning (Trivy, Aqua, Clair, Prisma Cloud).Enforce Kubernetes hardening controls (RBAC, network policies, pod security).Monitor cluster security posture and remediate vulnerabilities. 5. Security Automation Tooling Develop automated playbooksscripts using Python, Bash, or tegrate SIEMSOAR platforms with builddeployment workflows.Automate vulnerability management workflows and remediation processes. 6. Compliance Governance Support adherence to NIST, ISO 27001, SOC 2, PCI-DSS, and internal security policies.Implement guardrails and policy-as-code using OPA, Conftest, or AWSAzure policy engines.Produce audit-ready documentation and reporting. 7. Monitoring Incident Response Integrate security telemetry into pipelines and cloud environments.Respond to and triage security incidents related to CICD, code, or cloud workloads.Conduct root-cause analysis and implement preventative measures. Required Skills Qualifications 37 years experience in Cybersecurity, DevSecOps, or Cloud Security roles.Strong programmingscripting abilities (Python, Go, Bash, or PowerShell).Hands-on experience with CICD tools and automation.Solid understanding of security vulnerabilities such as OWASP Top 10, CWE, CVE.Experience with containers and Kubernetes security.Familiarity with microservices, APIs, and distributed systems.Knowledge of cloud networking, identity, secrets management, and encryption.Preferred Nice-to-HaveCertifications CISSP, CISM, CCSP, AWSAzure Security Specialty, GIAC, or DevSecOps ProfessionalExperience with Zero Trust architecturesSupply-chain security (SBOMs, Sigstore, Cosign)Infrastructure Monitoring and ObservabilityServerless securityAutomated compliance frameworks Competencies: Digital : Cloud DevOps, Digital : Kubernetes Experience (Years): 10 & Above Essential Skills: Key Responsibilities 1. Secure SDLC Application Security Embed security controls at every stage of the SDLC.Conduct threat modeling, secure code reviews, and risk assessments.Implement SAST, DAST, SCA tools and interpret results for development teams.Enforce secure coding standards and promote security-first development culture. 2. CICD Pipeline Security Build and maintain secure CICD pipelines (GitHub Actions, GitLab CI, Jenkins, Azure DevOps).Automate security scanning and policy enforcement in build and deployment tegrate secrets management and environment hardening into pipelines. 3. Cloud Infrastructure Security Implement Infrastructure as Code (IaC) security reviews using Terraform, CloudFormation, ARM, or Pulumi.Validate and enforce cloud security best practices (AWS, Azure, GCP).Deploy and maintain cloud-native security tools such as AWS GuardDuty, Azure Defender, GCP SCC. 4. Container Kubernetes Security Build secure container images and manage scanning (Trivy, Aqua, Clair, Prisma Cloud).Enforce Kubernetes hardening controls (RBAC, network policies, pod security).Monitor cluster security posture and remediate vulnerabilities. 5. Security Automation Tooling Develop automated playbooksscripts using Python, Bash, or tegrate SIEMSOAR platforms with builddeployment workflows.Automate vulnerability management workflows and remediation processes. 6. Compliance Governance Support adherence to NIST, ISO 27001, SOC 2, PCI-DSS, and internal security policies.Implement guardrails and policy-as-code using OPA, Conftest, or AWSAzure policy engines.Produce audit-ready documentation and reporting. 7. Monitoring Incident Response Integrate security telemetry into pipelines and cloud environments.Respond to and triage security incidents related to CICD, code, or cloud workloads.Conduct root-cause analysis and implement preventative measures. Required Skills Qualifications 37 years experience in Cybersecurity, DevSecOps, or Cloud Security roles.Strong programmingscripting abilities (Python, Go, Bash, or PowerShell).Hands-on experience with CICD tools and automation.Solid understanding of security vulnerabilities such as OWASP Top 10, CWE, CVE.Experience with containers and Kubernetes security.Familiarity with microservices, APIs, and distributed systems.Knowledge of cloud networking, identity, secrets management, and encryption.Preferred Nice-to-HaveCertifications CISSP, CISM, CCSP, AWSAzure Security Specialty, GIAC, or DevSecOps ProfessionalExperience with Zero Trust architecturesSupply-chain security (SBOMs, Sigstore, Cosign)Infrastructure Monitoring and ObservabilityServerless securityAutomated compliance frameworks

Created: 2026-04-02