DevSecOps Engineer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Engineering, or related field.
• Minimum of 5 years of experience supporting DevSecOps, Cloud Engineering, Infrastructure Engineering, Platform Engineering, or related disciplines.
• Experience with Infrastructure as Code (IaC) using Terraform and/or OpenTofu.
• Experience with Configuration as Code (CaC) using Ansible.
• Experience designing, developing, and maintaining CI/CD pipelines using GitHub Actions or similar technologies.
• Experience supporting containerized environments using Docker and Kubernetes.
• Experience integrating security tools and controls into software delivery pipelines.
• Familiarity with SAST tools, secrets management, dependency scanning, and policy-as-code frameworks.
• Experience with Git-based development workflows, pull request reviews, and source code management practices.
• Strong written and verbal communication skills.
• Ability to work independently while supporting multiple priorities in a collaborative environment.
• Ability to successfully complete and maintain a government background investigation.

Nice To Haves

• Experience supporting federal government or highly regulated environments.
• Familiarity with NIST SP 800-53, FISMA, FedRAMP, and Zero Trust security principles.
• Experience with AWS cloud services and cloud-native infrastructure.
• Experience with secrets management platforms such as HashiCorp Vault.
• Proficiency in Python, Bash, or other scripting languages.
• Experience supporting Kubernetes security, container hardening, and compliance initiatives.
• Experience implementing DevSecOps best practices within enterprise-scale environments.

Responsibilities

• Maintain, extend, and improve Infrastructure as Code (IaC) solutions using Terraform and OpenTofu.
• Develop and maintain Ansible playbooks and roles to automate system configuration, compliance enforcement, patch management, and application deployment.
• Build, maintain, and enhance GitHub Actions workflows supporting automated build, test, security scanning, and deployment processes.
• Integrate security controls throughout the software development lifecycle using DevSecOps and Shift-Left security practices.
• Support containerized application delivery using Docker and Kubernetes.
• Develop and maintain Dockerfiles, Kubernetes manifests, and Helm charts following security and operational best practices.
• Support namespace management, RBAC configuration, cluster health monitoring, and container troubleshooting activities.
• Implement and maintain security gates including SAST, DAST, dependency scanning, secrets detection, and policy-as-code validation.
• Support compliance and hardening initiatives aligned with CIS benchmarks, NIST standards, and organizational security baselines.
• Participate in sprint planning, standups, technical reviews, peer reviews, and engineering collaboration activities.
• Develop and maintain technical documentation, operational runbooks, and configuration records.
• Support code reviews and contribute to continuous improvement efforts across infrastructure and software delivery pipelines.

Benefits

• competitive pay
• comprehensive health coverage
• flexible PTO
• federal holidays off
• tuition reimbursement
• professional development support
• wellness stipends