Job Specifications
Title: AWS DevSecOps Engineer
Location: Houston, TX (Onsite)
Job Type: 12 Months Contract
Client: Infosys
Job Description
In this role, the resource will be responsible for designing, implementing, and securing cloud-native architectures on AWS. You'll drive infrastructure automation, enforce DevSecOps best practices, and play a key role in integrating identity, access, and API security layers into our platform. This position demands strong expertise in AWS, Terraform, Okta, Kong (or similar API gateways), and security-focused DevOps tooling.
Key Responsibilities:
* Architect and manage secure, scalable, and highly available infrastructure on AWS
* Implement and manage infrastructure as code using Terraform
* Integrate and maintain Okta for identity and access management (IAM) across systems and services
* Deploy and manage API gateways/proxies (e.g., Kong) for secure and scalable API access
* Design and enforce CI/CD pipelines with security gates embedded
* Automate security scanning, secrets management, and compliance validation
* Implement cloud-native security best practices across workloads, containers, APIs, and users
* Work with application teams to define and enforce least privilege, zero trust, and API access control policies
* Support incident response and root cause analysis related to cloud infrastructure and platform security
* Partner with engineering, QA, and InfoSec teams to embed security throughout the SDLC
Required Skills & Qualifications:
* 8+ years of experience in DevOps, Cloud Infrastructure, or Security Engineering roles
* Strong hands-on experience with AWS services (EC2, IAM, VPC, S3, RDS, ECS/EKS, Lambda, etc.)
* Deep expertise in Terraform for infrastructure provisioning and compliance
* Experience managing Okta or similar SSO/IAM platforms in a complex multi-app environment
* Solid understanding of API management and experience with Kong, AWS API Gateway, or similar platforms
* Familiarity with OAuth2, OIDC, SAML, and API security models
* Experience with CI/CD tools (e.g., GitHub Actions, GitLab, Jenkins, or AWS CodePipeline)
* Proficiency in scripting with Python, Bash, or similar
* Understanding of DevSecOps principles and integrating security in automated pipelines
* Experience with secrets management tools like Vault, AWS Secrets Manager, or SSM
* Strong knowledge of cloud networking, firewalls, and security controls
Preferred/Bonus Skills:
* Experience with containerization and Kubernetes (EKS) security best practices
* Exposure to compliance frameworks like SOC 2, ISO 27001, NIST, etc.
* Experience with SIEMs or logging platforms (e.g., Datadog, Splunk, CloudWatch)
* Familiarity with automated security testing (SAST, DAST, IAST)
* AWS certifications (e.g., AWS Security Specialty, DevOps Professional)
Thanks & Regards
Alok Ranjan Pathak | Team Lead - US Staffing
Email: Alok.ranjan@ampstek.com | Desk: (609) 360-2613
Ampstek LLC - Global IT Partner | www.ampstek.com