DevSecOps Engineer

About The Position

Requirements

• 7 years of professional experience with an advanced degree, 9 years with a Bachelors
• 3-5 years of hands-on DevSecOps/DevOps experience in a high-security, mission-critical environment.
• IAT Level II certification
• Active Secret clearance
• Proven ability to write clean, maintainable code
• Familiarity with the software development lifecycle (SDLC).
• Deep knowledge of Linux (RHEL, CentOS, Ubuntu) and/or Windows Server (2016/2019/2022) administration, including hardening and patch management.
• Direct experience implementing security baselines (STIG, CIS, NIST), vulnerability remediation, or hardening automation.
• Have basic network fundamentals, understanding of TCP/IP, VLANs, routing, firewalls, VPNs, and basic network troubleshooting.
• Ansible - Advanced proficiency in playbook development, role creation, inventory management, and Ansible Automation Platform.
• Containerization – Strong experience building, packaging, and deploying containerized applications (Docker, Podman) and orchestrating them with Kubernetes and/or OpenShift
• Scripting Languages – Expert-level scripting in Python,Bash, and/or PowerShell for automation, data manipulation, and API integration.
• CI/CD Platforms – Hands-on with GitLab CI/CD (or Jenkins, Azure DevOps, GitHub Actions) to design pipelines that include unit tests, security scans, and automated deployments.
• Version Control Collaboration – Mastery of Git workflows, pull-request reviews, branching strategies, and code-ownership practices.
• Infrastructure-as-Code Tools – Proficiency with Terraform/Packer for platformud-agnostic resource provisioning.
• Monitoring Observability – Experience configuring telemetry (Prometheus, Grafana, ELK/EFK stacks, Splunk) and alerting for automated environments.
• Credential Management – Familiarity with HashiCorp Vault, Azure Key Vault, AWS Secrets Manager, or equivalent.
• Compliance Automation – Ability to script and integrate compliance checks (OpenSCAP, Inspec, Chef InSpec) into the deployment pipeline.
• Problem-Solving Incident Response – Comfortable troubleshooting complex, multi-layered failures and participating in on-call rotation for production issues.
• US Citizenship is required.

Responsibilities

• Design, write, and maintain IaC templates for Windows and Linux platforms using Ansible, Packer, Python and other scripting languages.
• Ensure all code is version-controlled, reviewed, and compliant with program security standards.
• Build and operate an end-to-end automation pipeline that provisions, hardens, and configures systems for the program.
• Integrate automated testing, vulnerability scanning, and compliance verification into the stack.
• Develop reusable Ansible playbooks and custom scripts that automatically apply the DoD STIG baseline to systems.
• Track and remediate any compliance drift on an ongoing basis.
• Establish single source of truth for all configuration data (inventory, variables, secrets) that feeds the Ansible automation.
• Implement secure secret management (Vault, Azure Key Vault, AWS Secrets Manager, etc.) and enforce idempotent deployments.
• Evaluate, prototype, and stand up new tools, containers, and services that keep program ahead of emerging technology trends.
• Provide documentation, training, and knowledge-transfer for any new capabilities introduced to the team.

Benefits

• I2X offers a competitive compensation program and comprehensive benefits package to our employees.