Lead IT Security Engineer

Job Summary The Lead IT Security Engineer will play a key role in integrating security capabilities into CI/CD pipelines and development workflows as part of a multi-year DevSecOps transformation initiative. This position supports cloud migration and platform modernization activities while ensuring security is embedded early in the development lifecycle. The role requires strong hands-on experience across CI/CD automation, infrastructure-as-code, container security, scripting, and security tooling. The Lead IT Security Engineer will collaborate closely with application security teams, development teams, and operational partners to deliver secure, scalable, and automated security controls across the Common Data Platform. Key Responsibilities Design, implement, and maintain security controls within GitLab CI/CD pipelines. Develop pipeline automation scripts and pipeline-as-code solutions. Create and maintain reference architectures and example implementations for secure pipelines. Integrate security scanning tools, including SAST, SCA, container scanning, and DAST tools. Develop and enforce container security policies aligned with organizational standards. Support developers in interpreting and resolving security findings. Collaborate with Security Champions to provide training and technical guidance on secure pipeline practices. Coordinate with governance and compliance teams to support security control validation and evidence collection. Support telemetry collection and analysis for pipeline assessments. Mentor team members in secure development practices and advocate for security across the SDLC. Required Qualifications 5+ years of experience in DevOps, SRE, or Platform Engineering. 3+ years of hands-on experience with GitLab CI/CD or similar platforms (Jenkins, GitHub Actions, Azure DevOps). Strong expertise in CI/CD pipeline design, implementation, and optimization. Proficiency in scripting and automation using Python, Bash, or similar languages. Deep understanding of containerization technologies such as Docker, Kubernetes, and ECS. Experience with Infrastructure-as-Code tools (Terraform preferred). Practical knowledge of AWS services. Experience integrating security scanning tools into CI/CD pipelines. Strong understanding of Git workflows, branching strategies, and merge request processes. Experience with configuration management and pipeline-as-code methodologies. Working knowledge of application security concepts and common vulnerabilities (e.g., OWASP Top 10). Familiarity with SAST, SCA, container, and DAST security tools. Understanding of secrets management best practices and secure development lifecycle principles. Experience in Agile/Scrum environments with multi-team collaboration. Strong communication skills and experience working with distributed teams. Experience mentoring or coaching team members. Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent experience. Ability to document technical processes, create runbooks, and develop training materials. Ability to manage multiple priorities, work independently, and contribute to team-focused initiatives. Ability to travel for final interviews or onboarding activities as needed. Preferred Qualifications Experience securing a Data Lakehouse environment. Experience driving adoption of new tools or processes across multiple development teams. Experience collaborating with governance, risk, and compliance (GRC) stakeholders. Certifications AWS Certified DevOps Engineer or AWS Solutions Architect. Security certifications such as GIAC or similar.