DevSecOps Engineer

DEFTEC Corporation•Chesapeake, VA

About The Position

DEFTEC delivers mission-critical solutions through skillfully delivered services and innovative products. We are inspired by our clients' critical missions and driven to provide the most effective solutions to execute their missions, operational challenges, and requirements. Our dedicated, experienced, and talented employees work closely with our clients to ensure the delivery of exceptional services and products. POSITION OVERVIEW The DevSecOps Engineer designs, implements, and operates scalable, resilient, high‑throughput systems using service‑oriented architectures, delivering capabilities within Agile/DevSecOps environments such as Scrum, SAFe, and Kanban. The role includes designing and managing secure networking and service mesh solutions-covering TLS, Istio, Linkerd, and API gateways-and applying zero‑trust principles with compliance automation tools and practices including OPA, Kyverno, SBOM, and CIS benchmarks. The engineer also manages secrets and access policies with modern IAM solutions-Vault, AWS KMS, Azure Key Vault-and enforces RBAC/ABAC to safeguard services and data. Fluency in English (oral and written) is required to collaborate effectively, document solutions clearly, and support delivery across stakeholders.

Requirements

Minimum 4 years of experience with containerization and orchestration (Docker, Kubernetes, OpenShift).
Minimum 4 years of experience in designing and maintaining Cl/CD pipelines with automated testing and security validation.
Experience with Infrastructure as Code (Terraform, Ansible, Helm, Pulumi).
Experience deploying and securing workloads in hybrid/public cloud environments (AWS, Azure, Google Cloud, VMware, OpenStack).
Experience implementing site reliability engineering and observability practices (Prometheus, Grafana, ELK/Loki, OpenTelemetry).
Experience implementing scalable, resilient, high-throughput systems and service-oriented architecture.
Experience delivering capabilities in Agile/DevSecOps environments (Scrum, SAFe, Kanban).
Experience designing and managing secure networking and service mesh (TLS, lstio, Linkerd, API gateways).
Experience applying zero-trust principles and compliance automation (OPA, Kyverno, SBOM, CIS benchmarks).
Experience managing secrets and access policies using modern 1AM solutions (Vault, AWS KMS, Azure Key Vault, RBAC/ABAC).
Fluent in English (oral and written).

Responsibilities

Deploy and operate containerized services using orchestration frameworks to ensure scalability and resilience.
Automate infrastructure through Infrastructure as Code (laC} to provide consistent and repeatable environments.
Deploy and monitor workloads in cloud environments (AWS, Azure, Google Cloud, VMware, OpenStack).
Implement site reliability engineering (SRE} and observability practices to ensure resilience, monitoring, logging, metrics, and distributed tracing.
Support high-throughput and service-oriented architectures, ensuring resilient and scalable deployments.
Deliver incremental capabilities in Agile and DevSecOps environments following frameworks such as Scrum, SAFe, or Kan ban.
Design and manage secure networking and service meshes (TLS, lstio, Linkerd, API gateways) to ensure encrypted and reliable service-to-service communication.
Apply zero-trust principles and compliance automation to enforce security policies and validate system compliance.
Manage identity and access using secure methods for secrets, tokens, certificates, and least privilege access control.