DevSecOps Engineer

About The Position

Requirements

• Bachelor's degree and a minimum of 5 years of relevant experience, Or a minimum of 8 years of relevant experience in lieu of a degree
• 5 years of experience in DevSecOps implementation.
• 5 years of experience with security policy development and enforcement.
• 3 years of experience with CI/CD tools, specifically GitLab CI/CD.
• 3 years of experience implementing automated security scanning tools.
• 3 years of experience Git repository management and governance.
• 3 years of experience working with Microsoft Azure (App Services, Azure DevOps, AKS, networking, IAM, security controls).
• Must be able to pass agency specific suitability and have an active DoD Secret Clearance

Nice To Haves

• 3 years of experience with containerization (Docker) and orchestration (Kubernetes) is a plus.
• Familiarity with Infrastructure as Code (Terraform, ARM templates, Bicep) is preferred.
• Understanding of Agile/Scrum methodologies.
• Strong documentation and communication skills
• Ability to communicate clearly and effectively via written and verbal communication in both formal and informal situations.
• Ability to adapt to frequent changes in priorities, follow project schedules, meet established deadlines, and proactively communicate risks and issues to the Contractor PM and/or Federal Leads.
• Possess good listening skills and the ability to detect explicit and implicit needs and wants of the client.
• Demonstrated ability to exercise good judgment, prioritize multiple tasks, and problem solve under pressure of deadlines and resource constraints
• Possess strong analytical and critical thinking skills with the ability to apply them to the client/ contract workspace.
• Excellent organizational skills and attention to detail.
• Strong analytical, critical thinking, and problem-solving skills.
• Must have previous client-engagement experience.
• DHS HQ or Component- level experience preferred.

Responsibilities

• Design, implement, and maintain DevSecOps practices across the SDLC.
• Develop, implement, and enforce security policies, standards, and procedures.
• Integrate security controls and automated security testing within CI/CD pipelines.
• Configure, manage, and optimize GitLab CI/CD pipelines.
• Implement automated code quality and security checks in GitLab (SAST, DAST, dependency scanning, secret detection, etc.).
• Manage and maintain Git repositories, including branching strategies, access controls, and governance.
• Ensure secure repository management and version control best practices.
• Deploy and manage applications in Microsoft Azure cloud environments.
• Implement cloud security best practices in Azure (IAM, network security, policies, monitoring).
• Participate in project management activities, including, but not limited to: Sprint planning and estimation Risk identification and mitigation Technical documentation Cross-team coordination Progress reporting
• Ability to work efficiently and effectively in a dynamic and fast-paced environment.

Benefits

• Evolver Federal offers competitive benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies.