MAC FACE Marketplace Co.

Position Overview

We are seeking a highly skilled DevSecOps Engineer to support mission-critical government projects. This role focuses on security automation, cloud security, and secure application development, ensuring sensitive government systems remain resilient, compliant, and protected against evolving threats.

As a key member of our security team, you will design, implement, and maintain automation tools, monitor security events, and support secure development practices across the Software Development Lifecycle (SDLC).

Key Duties & Responsibilities

• Champion DevSecOps & Security Automation:

Build and maintain scripts and automation tools for critical security tasks, including vulnerability scanning, data security checks, and access control. Streamline processes to improve efficiency and strengthen overall security posture.

• Monitor & Analyze Security Events:

Utilize SIEM tools to detect threats, investigate alerts, analyze logs, and identify security gaps. Apply frameworks such as NIST, CIS, and CISA to assess risk and guide security improvements.

• Support Secure Application Development:

Collaborate with development teams to integrate secure coding practices throughout the SDLC. Conduct code reviews, threat modeling, and provide guidance on secure development principles.

• Investigate & Respond to Security Incidents:

Participate in incident response activities, including identifying root causes, mitigating threats, and implementing recovery procedures.

• Document Security Procedures:

Create clear, actionable documentation for security policies, procedures, and best practices. Develop training materials to ensure all stakeholders understand their security responsibilities.

• Provide On-Call Support:

Respond to critical issues and support the security team as needed.

Required Skills & Experience

• 5+ years of hands-on experience with C#, Python, PowerShell, or Rust
• 1+ year experience with automation principles, including AI, ML, or scripting to streamline security tasks
• 3+ years understanding of the Software Development Lifecycle (SDLC) and DevSecOps principles
• 3+ years proficiency in cloud security, including identity and access management, data protection, and compliance

Preferred Skills

• 1+ year experience with SIEM tools (configuration, tuning, threat hunting, alert creation)
• 1+ year experience applying security frameworks (NIST, CIS, CISA) in hybrid environments
• 1+ year expertise in data classification and DLP (Data Loss Prevention) configuration to safeguard sensitive information

Education Requirement

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field
• Equivalent professional experience may substitute on a year-for-year basis

Why Join Us

• Contribute to critical government initiatives that protect sensitive data and infrastructure
• Work alongside highly skilled security professionals in a collaborative, mission-driven environment
• Gain exposure to modern DevSecOps practices, cloud security technologies, and advanced automation tools

Job Types: Full-time, Contract

Pay: $112,320.00 - $145,600.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Life insurance
• Vision insurance

Ability to Commute:

• Blythewood, SC 29016 (Required)

Ability to Relocate:

• Blythewood, SC 29016: Relocate before starting work (Required)

Work Location: Hybrid remote in Blythewood, SC 29016