DevSecOps Engineer, Senior

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent relevant work experience.
• 8+ years of experience in DevSecOps, DevOps, cloud, or platform engineering roles with significant hands-on work implementing automated pipelines and “as-a-Service” delivery models.
• Strong understanding of infrastructure components, cloud capabilities, and software-defined practices, including auto-provisioning and configuration management.
• Proven proficiency with Agile and DevSecOps methodologies and common automation tools used to build, test, secure, and deploy applications in cloud and on-premises environments.
• Demonstrated problem-solving, troubleshooting, communication, and interpersonal skills, with the ability to work effectively across development, security, and operations teams.
• Ability to obtain and maintain a Public Trust investigation and U.S. citizenship as required for this remote federal IT role.

Nice To Haves

• Experience with Kubernetes-based platforms and service meshes used to host microservices in production environments.
• Cloud-provider DevOps or security certification such as AWS Certified DevOps Engineer or equivalent vendor credential.
• Background supporting federal or other highly regulated environments, including familiarity with SLAs, compliance expectations, and documentation standards.
• Experience mentoring other engineers in DevSecOps practices, including infrastructure-as-code, continuous integration and delivery, and architecture reviews.

Responsibilities

• Design, implement, and maintain CI/CD pipelines that automate build, test, security scanning, and deployment activities across multiple environments.
• Develop and manage infrastructure-as-code templates and configuration-management scripts to provision cloud and on-premises environments in a consistent, repeatable manner.
• Integrate security tooling and practices—such as static and dynamic application security testing, dependency scanning, and policy-as-code—directly into DevOps workflows.
• Collaborate with development and platform teams to standardize containerization, orchestration, and environment configurations that support microservices and modern application architectures.
• Implement automation and monitoring for platform health, observability, and incident response, using metrics and logs to drive reliability and performance improvements.
• Support auto-provisioning of infrastructure hardware, storage, and networks as part of an “as-a-Service” model, aligning solutions with cost, scalability, and operational objectives.
• Define and document DevSecOps standards, patterns, and best practices, mentoring engineers on Agile and DevSecOps methodologies and toolchains.
• Partner with stakeholders to evaluate new DevSecOps capabilities, assess risks, and recommend changes to improve pipeline security, resiliency, and compliance.