DevSecOps Engineer

Xpect Solutions•Crystal City, VA

1d•Hybrid

About The Position

XPECT Solutions is seeking a DevSecOps Engineer to support our Federal Government Customer with delivering secure, cloud-based mission systems. The Engineer will design, automate, and harden CI/CD pipelines and AWS infrastructure that host production workloads, embedding security controls throughout the build, deploy, and runtime lifecycle. This role partners closely with development, operations, and security teams to accelerate delivery while maintaining compliance with federal security requirements (NIST 800-53, FedRAMP, DHS 4300A). The ideal candidate is hands-on across infrastructure-as-code, container orchestration, and pipeline automation, and is comfortable troubleshooting complex issues across AWS services, Linux systems, and application deployments. As a Hybrid position, there is an onsite requirement of one day per week.

Requirements

Must be able to pass a full background check and obtain a Public Trust 6C
Five (5) years of Information Assurance experience
Experience with the following technologies: AWS EC2 EBS ECS RDS Oracle/Postgres Admin ALBs Cloudwatch MSK S3 VPC Lambda OpenSearch Amazon MQ [ActiveMQ] IAM RHEL Linux Shell Python Docker GitHub Jenkins/Cloudbees Ansible Terraform Vault

Nice To Haves

Bachelor’s Degree in Computer Science or related field.

Responsibilities

Design, build, and maintain secure CI/CD pipelines using Jenkins/CloudBees, GitHub, and Ansible to automate build, test, and deployment of containerized applications.
Architect and manage AWS infrastructure (EC2, ECS, EBS, RDS, S3, VPC, Lambda, ALBs, OpenSearch, MSK, Amazon MQ, IAM, CloudWatch) supporting production workloads.
Author and maintain infrastructure-as-code using Terraform and Ansible to provision, configure, and enforce consistent, repeatable environments.
Containerize applications with Docker and manage orchestration, image hardening, and registry workflows in alignment with DHS security baselines.
Administer RHEL systems and develop automation in Python and Linux shell to streamline operational tasks and reduce manual intervention.
Manage secrets, credentials, and encryption keys using HashiCorp Vault and AWS IAM, enforcing least-privilege access across all environments.
Integrate security scanning (SAST, DAST, SCA, container, and IaC scanning) into pipelines and remediate findings in partnership with development teams.
Monitor system health, performance, and security posture using CloudWatch and related tooling; respond to incidents and lead root-cause analysis.
Administer Oracle and PostgreSQL databases on Amazon RDS, including backup, patching, performance tuning, and access controls.
Support Authority to Operate (ATO) activities by implementing and documenting NIST 800-53 controls, producing artifacts, and addressing POA&M items.
Collaborate with development, security, and operations teams to mature DevSecOps practices, mentor junior engineers, and drive continuous improvement.