DevSecOps Engineer IV

About The Position

Requirements

• Clearance: Active Top Secret SCI (TS/SCI) with Polygraph
• Citizenship: U.S. Citizenship is required.
• Education: Bachelor’s degree in Computer Science, Information Security, or related technical field.
• Experience: 15+ years of experience in DevOps, SRE, or Platform Engineering, with at least 5 years focused on DevSecOps and cloud-native security.
• Cloud Platforms: Deep hands-on experience securing AWS or Azure environments (IAM, KMS, Networking, logging).
• CI/CD & Automation: Proficiency in building CI/CD pipelines (GitLab) and automating tasks with Python, Bash.
• Containers/Orchestration: Strong expertise in Docker and Kubernetes/EKS security.
• Security Tools: Hands-on experience with security scanning tools.

Nice To Haves

• Certified Information Systems Security Professional (CISSP), AWS Certified DevOps Engineer – Professional, Certified Kubernetes Security Specialist (CKS), or CCSP.
• Experience with OPA/Gatekeeper or Kyverno.
• Knowledge of SBOM generation, artifact signing (cosign), and provenance concepts.
• Familiarity with NIST SP 800-171 or CMMC expectations.
• Strong analytical skills to diagnose complex security issues spanning multiple technologies.
• Ability to distill technical complexities into actionable guidance for development teams.
• Passion for automating everything and a mindset of continuous improvement.

Responsibilities

• Design, build, and maintain automated CI/CD pipelines (GitLab CI/CD, GitHub Actions) that incorporate security testing tools at every stage.
• Develop and manage infrastructure using Terraform or CloudFormation, implementing security guardrails and scanning to ensure compliance and prevent misconfigurations.
• Implement security best practices for Docker, Kubernetes, and EKS, including image hardening, admission controls, policy-as-code and runtime security.
• Partner with teams to design and enforce AWS/Azure security guardrails, including IAM least-privilege, network controls, and encryption standards.
• Operationalize vulnerability management by identifying, prioritizing, and remediating security threats across applications and infrastructure.
• Translate security compliance requirements into automated security controls and audit-ready evidence.
• Act as a security champion, mentoring junior engineers and developers on secure coding practices and DevSecOps principles.

Benefits

• health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs