DevSecOps Engineer (Journeyman)

About The Position

Requirements

• Active Secret clearance required.
• Experience / Education: 5 years relevant experience with BS/BA degree or 3 years with MS/MA or 1 year PHD or 9 years w/o a degree or 7 years with AS/AA
• Certifications: This role requires a demonstration of capability within the Cyberspace IT workforce. Successful applicants must satisfy Foundational Qualification standards via an approved industry certification (e.g., A+ or Network+) or documented equivalent military/educational training as defined in the DoD 8140 Qualification Matrix.

Nice To Haves

• Eligible for Top Secret/SCI clearance.
• Prior experience working in DoD or Federal government IT environments.
• AWS certifications (e.g., AWS Solutions Architect, AWS Security Specialty) or equivalent cloud certifications.
• Familiarity with NIST RMF, ATO processes, and DoD security compliance frameworks.
• Hands-on experience with Kubernetes, container orchestration, and microservices architectures.
• CompTIA Security+
• Worklocation: remote with the ability to travel to the NCR if required

Responsibilities

• Implement, maintain, and secure CI/CD pipelines, infrastructure automation, and deployment tooling to support MODES III application and platform delivery in AWS GovCloud, ensuring DevSecOps practices are embedded in development lifecycles.
• Build and operate CI/CD pipelines (Jenkins, GitLab CI, CodeBuild/CodePipeline), integrating automated unit/integration tests, static/dynamic security scans (SAST/DAST), and artifact promotion gates to enforce secure, repeatable releases,.
• Implement Infrastructure as Code (IaC) templates (Terraform/CloudFormation) and automated environment provisioning for dev/test/pre prod/prod, enabling consistent, auditable cloud environments aligned with DoD CC SRG requirements.
• Containerize applications and manage orchestration support (Docker, EKS/ECS); automate application deployments, health checks, rollbacks, and canary/cutover strategies as part of release workflows.
• Integrate security into pipelines: automate hardening (STIG/SRG), vulnerability scanning (ACAS/NESSUS/SCAP), secrets management, and coordinate remediation workflows with CCM and security teams to support RMF/ATO artifact capture.
• Implement observability and telemetry: configure centralized logging, metrics, and alerting (CloudWatch, Splunk, ELK) and ensure pipeline/test results and service health feed MODES III dashboards for near real time monitoring.
• Support backup/DR automation and validation: implement automated snapshot, backup, and recovery orchestration for cloud resources; participate in COOP/DR exercises and validate recovery playbooks.
• Collaborate with developers, QA, DBAs, and cloud architects to codify deployment patterns, optimize pipelines, and reduce lead time for changes; mentor junior engineers on secure automation best practices.