Azure DevOps Engineer

SAICNorth Charleston, SC
Onsite

About The Position

SAIC is seeking an Azure DevOps Engineer to join their team. This role involves building and running an internal developer platform using Azure, CI/CD, Kubernetes, pipelines, and automation for both connected and air-gapped environments. The engineer will utilize GitLab for source control and pipelines, Terraform for automation, Python for helpers/tests, and Helm for Kubernetes deployments. Experience with Microsoft Azure Stack Hub and Hyper-V sidecar is also part of the role. The position emphasizes trunk-based GitLab workflows, deterministic pipelines with integrated testing and security scans, and evidence attachment to every change, avoiding manual operations. Artifact movement will be driven by checksums/signatures/SBOMs, with mirroring via reposync and Pulp, and offline scanning/promotion for high-side environments. Secret hygiene, secrets management, and familiarity with vulnerability/misconfiguration scanning in CI (SAST, IaC, secret detection, Semgrep/KICS, Trivy/pip-audit) are key aspects of the role.

Requirements

  • Azure DevOps
  • CI/CD
  • Kubernetes
  • GitLab
  • Terraform
  • Python
  • Helm
  • Microsoft Azure Stack Hub
  • Hyper-V
  • Trunk-based development
  • Deterministic pipelines
  • Automated testing
  • Security scans
  • JUnit
  • SBOM
  • Artifact movement
  • Reposync
  • Pulp
  • Offline scanning
  • Secrets management
  • SAST
  • IaC scanning
  • Secret detection
  • Semgrep
  • KICS
  • Trivy
  • pip-audit

Responsibilities

  • Build and run an internal developer platform (Azure, CI/CD, Kubernetes, pipelines, and automation) for connected and air-gapped environments.
  • Utilize GitLab for source control and pipelines.
  • Implement Terraform as the primary automation language.
  • Use Python for helper scripts and tests.
  • Manage Kubernetes deployments with Helm.
  • Implement trunk-based GitLab workflows.
  • Ensure deterministic pipelines with built-in testing and security scans.
  • Attach evidence (JUnit/SBOM/scan) to every change.
  • Manage artifact movement via checksum/signature/SBOM.
  • Perform mirroring via reposync and Pulp.
  • Conduct offline scanning and promotion for high-side environments.
  • Ensure secret hygiene by default.
  • Implement secrets management.
  • Perform vulnerability/misconfiguration scanning in CI (SAST, IaC, secret detection, Semgrep/KICS, Trivy/pip-audit).
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service