Mid-Level DevSecOps Engineer

About The Position

Requirements

• BS degree in computer science or related technical degree plus 2-4 years of prior relevant experience or MS degree in computer science or related technical degree plus 1-2 years of prior relevant experience.
• 1+ years of experience in software engineering, DevOps, or DevSecOps roles
• On-site work (no remote/hybrid options)
• Ability to obtain and maintain a Security+ Certification
• Hands-on experience designing and implementing CI/CD pipelines using tools such as Jenkins, GitLab CI/CD, GitHub Actions, or similar
• Proficiency in containerization and orchestration technologies (Docker, Kubernetes)
• Solid scripting and automation skills in languages such as Python, Bash, or PowerShell
• Excellent problem-solving skills and ability to operate in fast-paced, mission-critical environments
• Strong understanding of Linux operating systems, including system administration, troubleshooting, and performance tuning.
• Strong collaboration and written communication skills.
• Must be a U.S. citizen and have the ability to obtain and maintain a Final Secret Clearance.
• Must be a resident of Huntsville, AL or willing to relocate to the Huntsville, AL aera.

Nice To Haves

• IAT Level II or Linux OS based certification.
• Proven experience integrating security practices into the software development lifecycle (SDLC), including SAST, DAST, dependency scanning, and container security
• Experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, or Pulumi
• Strong knowledge of security frameworks and compliance standards (e.g., NIST, RMF, SCAP, STIGs, etc.)
• Experience implementing identity and access management (IAM), secrets management, and zero-trust architectures
• Experience working in Agile/Scrum environments and collaborating with cross function teams.

Responsibilities

• Design, implement, and continuously improve DevSecOps pipelines and practices across the organization
• Integrate security controls and automated testing into CI/CD pipelines (SAST, DAST, SCA, container scanning)
• Establish and enforce secure software development lifecycle (SDLC) standards and best practices
• Collaborate with software engineering, cybersecurity, and integration teams to embed security into all phases of development
• Drive adoption of Infrastructure as Code (IaC) and immutable infrastructure principles
• Oversee containerization and orchestration strategies using Docker
• Implement and manage secrets management, identity and access controls (IAM), and zero-trust security models
• Ensure compliance with applicable security frameworks and standards (e.g., NIST, RMF, etc.)
• Mentor and guide engineers on DevSecOps principles, secure coding practices, and automation strategies
• Evaluate, select, and integrate new tools and technologies to improve security, automation, and delivery speed
• Partner with leadership to define DevSecOps strategy, roadmap, and metrics for success
• Support audit and accreditation activities, including documentation and evidence collection
• Drive a culture of shared responsibility for security, reliability, and performance

Benefits

• Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement.