The Senior DevSecOps Engineer role at Google Public Sector focuses on creating and maintaining an automated security ecosystem. This position involves integrating security practices into CI/CD pipelines to enhance the safety of Google's users and developers. The engineer will work closely with software engineers and security teams to identify and resolve vulnerabilities. The role requires a proactive approach to security, emphasizing automation and collaboration with Red and Blue Teams.

• Bachelor's degree or equivalent practical experience.
• 5 years of experience in a DevOps, DevSecOps, or similar role, including automation.
• Experience designing, implementing, and maintaining continuous integration and continuous deployment (CI/CD) pipelines.
• Experience in Python, Go, Bash, or similar for system automation and tool integration.
• Must possess an active Top Secret/SCI security clearance with current polygraph.

• Design and maintain automated deployment pipelines that integrate testing frameworks and mandatory security gates.
• Integrate and fine-tune static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis tools into the build process.
• Integrate with Red Team to codify tactics, techniques, and procedures (TTPs) for automated testing.
• Develop and enforce security policies for terraform and ansible deployments.
• Deploy and manage tools like open policy agent or kyverno to enforce security constraints within containerized environments.

• Employees at Google are often offered benefits like comprehensive health insurance, 401(k) matching, and flexible work arrangements, among other benefits.