DevSecOps Engineer - Hybrid - 25679

About The Position

Requirements

• Bachelors in related field and 2 years experience; OR
• Masters in related field (0 years experience); OR
• 6 years relevant experience with High School Diploma/Equivalent
• Familiarity with DevSecOps tools, such as GitLab, JFrog Artifactory, SonarQube, Fortify, Azure Container Registry/Storage, and Grafana Loki
• Working knowledge of DoD security frameworks, including STIGs and SRGs
• Understanding of database security concepts and proficiency in modern programming/scripting languages, including Python, Bash, YAML, JSON, and SQL
• Experience with monitoring and logging solutions, such as ELK Stack, Splunk, Loki, Prometheus, Grafana, and other SIEM platforms
• Must have a DoD 8570/8140 IAT Level II baseline certification (e.g., Security+ CE, CCNA-Security, CySA+, CND).
• Must be eligible for a CAC card
• U.S. citizenship required
• Must have a current or active DoD secret security clearance

Nice To Haves

• Prior experience supporting DoD programs in a DevSecOps capacity
• Experience with architectural documentation and DoDAF artifacts
• Familiarity with secure software development lifecycle (SDLC) practices
• Strong understanding of version control systems (Git)
• Experience with SAST, DAST, SCA, and container/infrastructure security scanning tools
• Proficiency in container technologies (Docker) and orchestration tools (Kubernetes, Helm)
• Experience with cloud platforms (AWS, Azure) and IaC tools (Terraform, CloudFormation, Ansible)

Responsibilities

• Embed security practices into development and deployment pipelines
• Conduct vulnerability assessments, scanning, and remediation
• Ensure compliance with DoD regulatory requirements and industry standards
• Implement and maintain security monitoring, logging, and alerting systems
• Design, implement, and maintain secure automated build, test, and deployment processes
• Support onboarding and migration of projects into the DevSecOps environment
• Promote automation of repeatable tasks and document pipeline architecture and procedures
• Design, deploy, and maintain AKS Kubernetes clusters
• Configure high availability, scalability, and fault tolerance
• Create and manage Helm charts and Kubernetes manifests
• Monitor deployments, troubleshoot issues, and optimize performance
• Implement access control, secrets management, and backup strategies
• Develop and maintain scalable infrastructure using Terraform, CloudFormation, or Ansible
• Document IaC templates and architectural diagrams
• Continuously assess and improve infrastructure performance and security
• Maintain documentation in Confluence and other repositories
• Create/modify DoDAF artifacts as needed
• Provide guidance to development teams on secure coding practices

Benefits

• We offer competitive benefits such as best-in-class medical, dental and vision plan choices; wellness resources; employee assistance programs; Savings Plan Options (401(k)); financial planning tools, life insurance; employee discounts; paid holidays and paid time off; tuition reimbursement; as well as early childhood and post-secondary education scholarships.