DevSecOps Engineer (Top Secret Clearance)

About The Position

Requirements

• Active Top Secret clearance.
• 2+ years of experience with DevSecOps practices, including integrating security scanning and vulnerability detection into CI/CD workflows.

Nice To Haves

• Bachelor’s degree in Computer Science, Information Systems, Engineering, Cybersecurity, or a related technical field preferred.
• 2+ years of experience in DevSecOps related technical roles.
• 2+ years of experience building and supporting CI/CD pipelines using tools such as Jenkins, GitHub Actions, GitLab CI, or similar platforms.
• 2+ years of experience with AWS cloud services and cloud-based deployment environments.
• Hands-on experience with Infrastructure as Code tools such as Terraform, CloudFormation, or similar.
• Experience with container technologies such as Docker and familiarity with Kubernetes, OpenShift, or similar orchestration platforms.
• Basic knowledge of secure software development practices, IAM, secrets management, and cloud security principles.
• Ability to troubleshoot pipeline, deployment, and environment-related issues in a collaborative team setting.
• Exposure to automated security testing tools such as SAST, DAST, SCA, or container vulnerability scanners.
• Familiarity with monitoring and logging tools such as CloudWatch, ELK, Splunk, or similar platforms.
• Familiarity with Infrastructure as Code tools such as Terraform, CloudFormation, or similar technologies.
• 2+ years of experience supporting automated deployments and release processes.
• 2+ years of experience integrating security practices into CI/CD pipelines and software development workflows.
• Experience working in Agile or Scrum-based development environments.
• Understanding of compliance and security frameworks such as NIST, FISMA, FedRAMP, or similar standards.
• Relevant cloud or security certifications such as AWS Certified Cloud Practitioner, AWS Developer Associate, Security+, or similar are a plus.
• Experience with scripting or automation using Bash, Python, or similar languages.
• Strong communication and collaboration skills with the ability to work across development, infrastructure, and security teams.
• Detail-oriented mindset with a focus on automation, reliability, and secure delivery practices.
• Ability to manage multiple priorities and support fast-paced delivery environments.
• Willingness to learn new DevSecOps tools, cloud services, and security best practices.
• Strong analytical and problem-solving skills with the ability to identify issues and recommend practical solutions.

Responsibilities

• Support the build and maintenance of CI/CD pipelines for automated build, test, security scanning, and deployment activities.
• Integrate security controls into the software development lifecycle, including static code analysis, dependency scanning, and vulnerability checks.
• Assist in implementing Infrastructure as Code using Terraform, CloudFormation, or similar tools to provision and manage cloud environments in a consistent and secure manner.
• Support containerized application deployments using tools such as Docker and Kubernetes or similar platforms.
• Help monitor applications, infrastructure, and pipelines to identify issues, vulnerabilities, and performance bottlenecks.
• Collaborate with development, security, and operations teams to improve delivery reliability and security posture.
• Participate in troubleshooting build, deployment, and environment issues across development, test, and production environments.
• Support automated release processes by improving pipeline reliability, deployment quality, and environment consistency across development, integration, and production.
• Maintain documentation for pipelines, automation workflows, security checks, and deployment procedures.
• Support secure configuration management, secrets handling, and access control practices across environments.
• Contribute to the continuous improvement of DevSecOps processes, tools, and automation capabilities.

Benefits

• ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy. We will consider for employment qualified applicants with arrest and conviction records. Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email [email protected] and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in (Benefits) Coverage Act. Candidate AI Usage Policy At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate or assist with responses during interviews (whether in-person or virtual) is not permitted. This policy is in place to maintain the integrity and authenticity of the interview process. However, we understand that some candidates may require accommodation that involves the use of AI. If such an accommodation is needed, candidates are instructed to contact us in advance at [email protected]. We are dedicated to providing the necessary support to ensure that all candidates have an equal opportunity to succeed.