Momentum is seeking a skilled DevSecOps Engineer to integrate security practices into our agile development processes, ensuring robust, scalable, and secure software delivery pipelines. In this role, you'll collaborate with engineering teams to automate security controls and foster a culture of secure coding across the organization.

At Momentum, we are at the forefront of innovative software solutions, and our DevSecOps team plays a critical role in embedding security into every stage of our development lifecycle. As a DevSecOps Engineer, you will work closely with developers, operations, and security teams to design, implement, and maintain secure CI/CD pipelines that accelerate delivery while minimizing risks.

Your responsibilities will include automating security testing within build processes, managing access controls in cloud environments, and conducting threat modeling for new features. You will leverage tools like Kubernetes for orchestration and integrate security scanning into our GitOps workflows to ensure compliance and early detection of vulnerabilities.

We value engineers who thrive in collaborative settings and are passionate about shifting left on security. This remote contract position offers the flexibility to contribute from anywhere in the US, with a focus on delivering high-impact results in a dynamic tech ecosystem.

Momentum is committed to fostering diversity and inclusion, providing a supportive platform for career growth in cybersecurity and DevOps.

• Bachelor's degree in Computer Science, Information Technology, or a related field; advanced certifications in DevOps or cybersecurity (e.g., AWS Certified DevOps Engineer, CISSP) preferred.
• 5+ years of experience in DevOps, with at least 2 years focused on security integration (DevSecOps).
• Proficiency in CI/CD tools such as Jenkins, GitLab CI, or Azure DevOps, and infrastructure as code (IaC) tools like Terraform or Ansible.
• Strong knowledge of cloud platforms (AWS, Azure, or GCP) and containerization technologies (Docker, Kubernetes).
• Experience with security tools including vulnerability scanners (e.g., SonarQube, Snyk), secrets management (e.g., HashiCorp Vault), and compliance frameworks (e.g., NIST, SOC 2).
• Excellent problem-solving skills and ability to work in a fast-paced, remote environment.
• Familiarity with scripting languages (Python, Bash) and monitoring tools (Prometheus, ELK stack).

• Competitive monthly salary with performance-based bonuses.
• Comprehensive health, dental, and vision insurance coverage.
• Flexible remote work arrangement with options for home office setup reimbursement.
• Generous paid time off, including vacation, sick leave, and holidays.
• Professional development opportunities, including access to certifications and conferences.
• Collaborative team environment with regular virtual team-building events.