DevSecOps Engineer, Mid

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent relevant work experience.
• 4–7+ years of experience in DevSecOps, DevOps, site reliability engineering, or platform engineering with strong exposure to security controls and automation.
• Solid understanding of infrastructure components, cloud capabilities, and software‑defined practices, including auto‑provisioning and configuration management.
• Hands‑on experience with Agile and DevSecOps methodologies, CI/CD tooling, and automation used to design and deliver scalable, cost‑effective solutions in an “as‑a‑Service” model.
• Strong problem‑solving, troubleshooting, communication, and interpersonal skills, with the ability to work effectively across application, cloud, and security teams.
• Ability to obtain and maintain a Public Trust investigation and U.S. citizenship as required for this remote federal IT position.

Nice To Haves

• Experience leading DevSecOps enablement for multiple teams, including coaching on pipeline standards, secure coding practices, and toolchain adoption.
• Professional DevOps or cloud‑security certification from a major provider (for example, AWS, Azure, or other leading cloud platforms).
• Familiarity with federal or other highly regulated environments, including working with SLAs and compliance expectations.
• Experience with scripting languages and modern cloud engineering practices such as infrastructure‑as‑code, continuous integration and delivery, and architecture reviews.

Responsibilities

• Design and implement CI/CD pipelines that automate build, test, security scanning, and deployment activities for mission‑critical systems across multiple environments.
• Develop and maintain infrastructure‑as‑code templates and automation scripts to provision and configure cloud and on‑premises environments in a consistent, scalable manner.
• Embed security baselines, policy checks, and monitoring into pipelines to enforce DevSecOps practices, ensuring vulnerabilities are identified and addressed early in the lifecycle.
• Collaborate with application, cloud, and security teams to evaluate, select, and standardize DevSecOps toolchains that support an “as‑a‑Service” delivery model.
• Support auto‑provisioning of infrastructure components—including compute, storage, and networks—leveraging automation tools and software‑defined practices.
• Monitor pipeline and platform health, troubleshoot build and deployment issues, and use metrics and logs to drive continuous improvement in reliability and performance.
• Contribute to documentation of DevSecOps standards, runbooks, and best practices, and provide coaching to teams adopting pipeline and secure‑coding standards.