DevSecOps Lead

Youngsoft, Inc. ( is a global software solutions IT company, delivering digital enterprise business betterment since 1996. Through collaborative engagement and discovery with our clients and vendors, we co-create industry specialized digital products, applications software, process, programs, and project outcomes. Headquartered in metro-Detroit, we leverage "pods" of Subject Matter Experts, Business Analysts, Solutions Architects, Software Engineers, and Project Managers, fused with HyperCare through our Global Support Centers. Through inclusivity, we share a singular vision to deliver world-class measurable upside results to our customers. It takes a village – come join ours!

Job Summary:

The DevSecOps Lead will help to design, implement, and support agile solutions and processes leveraged by a number of applications hosted in our environments. The DevSecOps lead will play a pivotal role in driving continuous integration, continuous delivery, and security practices throughout our software development and IT operations processes. Your expertise will help optimize our development workflows, enhance deployment efficiency, and ensure the highest level of security for our applications and systems.

We are looking for established experience with cloud platform services, DevSecOps practices such as build/release management, secure SDLC/DevSecOps practices such as automating security processes in CI/CD pipeline, and general automation. The ideal candidate must be a leader who will be able to collaborate, guide and mentor technical professionals with these practices.

Essential Job Functions:

• Collaborate with Agile development teams to design, implement, and maintain a secure software development lifecycle aligned with Agile principles.
• Integrate security best practices into CI/CD pipelines, including code scanning, static analysis, and vulnerability assessments, to ensure secure and rapid application delivery.
• Actively participate in Agile ceremonies, such as sprint planning, stand-ups, and retrospectives, to align DevSecOps efforts with development goals.
• Produce metrics and dashboards to provide qualitative and quantitative measures of quality, security, accessibility, and progress.
• Advocate for software engineering practices such as unit testing, code reviews, full build testing, quality engineering practices and requirements capturing techniques to the teams to improve end-to-end secure delivery practices.
• Identity and implement automation that will improve the performance and reliability of the pipelines including scripting, integration, problem resolution, and configuration management.
• Partner with development and operations teams to facilitate practical automation solutions and custom modules. Troubleshoot automation issues and when required, engage the resources to find practical solutions that move projects forward in a timely manner.
• Be a trusted automation and tooling advisor for DevSecOps initiatives by providing objective, practical and relevant ideas, insights, and advice.
• Assist application teams with onboarding to the adopted security tools/technologies.
• Be active in evaluating and recommending new technologies.

Other Responsibilities:

• Abide by the policies, procedures, and Code of Conduct of the company.
• Handle personal information (“PI”) that pertains to any individual (e.g., leads, dealers, employees, job applicants, etc.) in accordance with Privacy Policy and public facing privacy statements on managed websites.
• Complete any required training.
• Promptly report any known or suspected loss, theft or unauthorized disclosure or use of PI to the General Counsel/Chief Compliance Officer or Chief Information Officer.
• Adhere to the company’s compliance program.
• Safeguard the company’s intellectual property, information, and assets.
• Other duties as assigned.

Minimum Qualifications and Job Requirements:

• Proven experience as a DevSecOps Engineer or in a similar security-focused role within an Agile environment.
• Strong understanding of Agile development methodologies, including Scrum or Kanban, and experience working in Agile teams.
• In-depth technical expertise in DevSecOps techniques, continuous integration; continuous testing; and continuous deployment across environments
• Experience in leading DevSecOps CI tools such as Jenkins, Azure DevOps, Maven/Gradle, GIT, Nexus, Ansible), along with hands on experience implementing CI with test automation and code scanning (Sonarqube) integrated as part of the build cycles
• Proficiency in scripting languages to automate tasks.
• Experience with the Microsoft Azure stack of technologies, including Data Factory components such as Data Pipes, Function Apps, and SQL.
• Positive, enthusiastic attitude with great teamwork and interpersonal, relationship building, facilitation and communication skills, reflecting the ability to interact with cross department groups
• Certified SCRUM and/or SAFe practitioner preferred

Please respond with your updated resume, contact information