← Back to Jobs
Full Time

DevSecOps Engineer - Veracity Software Inc - Charlotte, NC

Veracity Software Inc

Apply Now
Charlotte, NC
Google Jobs
Posted 15 days ago

Key Responsibilities

Design, build, and maintain CI/CD pipelines using GitHub Actions (reusable/caller workflow pattern) and Harness CD (rolling, canary, and blue-green deployment strategies).Implement event-driven deployment triggers (e.g., Kafka EDA bus integration between CI and CD).Champion shift-left security by embedding SAST, SCA, secret scanning, and code quality gates at PR time, ensuring vulnerabilities are caught before merge, not after deployment.Integrate and manage Checkmarx (SAST), Black Duck (SCA/license compliance), SonarQube (code quality/security hotspots), and GitHub Secret Scanning into CI pipelines as hard-gate merge checks.Perform container image scanning using Prisma Cloud and Artifactory Xray; triage and remediate OS-level and application-layer CVEs.Implement and enforce artifact signing (GPG) and integrity verification as part of the release pipeline.Manage vulnerability lifecycle from scan ingestion through ServiceNow AVR (Application Vulnerability Repository) to remediation closure.Partner with cross functional teams to improve system reliability, performance, and deployment workflows.Collaborate with AppSec and SOC teams on findings from Splunk Enterprise Security rules and AppDynamics threat detection (OWASP attack patterns).Deploy, manage, and troubleshoot workloads on OpenShift Container Platform (OCP) across multi-data-center environments (DEV, UAT, PROD, DR).Author and maintain Helm charts with environment-specific value overlays, including templates for Deployments, StatefulSets, Services, Ingress/Routes, HPA, PodDisruptionBudgets, and NetworkPolicies.Manage Istio service mesh configurations for canary traffic shifting and mTLS enforcement.Automate TLS/mTLS certificate lifecycle using Venafi + cert-manager with auto-renewal policies.Build and maintain monitoring stacks using Splunk, Prometheus, Grafana, and AppDynamics for APM, error tracking, and performance baselines.Troubleshoot application issues, resolve incidents, and man

Apply for this Position