Principal Systems Engineer- DevSecOps

About The Position

Requirements

• Primary DevSecOps engineer on a mission-critical Navy communications program
• Own the containerization strategy — from architecture and build to hardening and sustainment
• Expertise in containers
• Experience solving security and scalability problems
• Experience with Docker and Kubernetes
• Experience building and maintaining custom container images
• Experience developing and managing CI/CD pipelines
• Experience with container hardening efforts, including RBAC, SECCOMP, AppArmor, namespace isolation, and least-privilege configurations
• Experience ensuring containers and orchestration platforms meet DoD/RMF compliance and ATO requirements
• Experience monitoring, troubleshooting, and optimizing containerized applications
• Experience applying Risk Management Framework (RMF) principles
• Experience implementing and maintaining compliance with DoD/DoN cybersecurity policies
• Experience utilizing STIGs to harden containers, hosts, and network equipment
• Experience maintaining environment compliance with directives (IAVA/IAVM)
• Experience with network integration, configuration, and administration
• Experience configuring and documenting network systems, including Cisco networking equipment
• Experience integrating container-specific monitoring and logging tools (e.g., Prometheus, Grafana, ELK/EFK stack)
• Key technical leader, providing direction and mentorship to junior engineers
• Ability to interface regularly with management, customers, and cross-functional teams
• Ability to participate in technical issue resolution during integration, implementation, and testing phases

Responsibilities

• Design, build, and manage the containerization platform using tools such as Docker and Kubernetes
• Build and maintain custom container images, optimized for security and performance
• Develop and manage CI/CD pipelines that integrate seamlessly with containerized environments
• Lead container hardening efforts, implementing: Role-Based Access Control (RBAC), SECCOMP and AppArmor profiles, Namespace isolation and least-privilege configurations
• Ensure containers and orchestration platforms meet DoD/RMF compliance and ATO requirements
• Monitor, troubleshoot, and optimize containerized applications for high availability and resilience in production
• Apply Risk Management Framework (RMF) principles across the DevSecOps lifecycle
• Implement and maintain compliance with DoD/DoN cybersecurity policies
• Utilize STIGs to harden containers, hosts, and network equipment
• Maintain environment compliance with directives (IAVA/IAVM)
• Provide network integration, configuration, and administration support
• Configure and document network systems, including Cisco networking equipment
• Integrate container-specific monitoring and logging tools (e.g., Prometheus, Grafana, ELK/EFK stack)
• Serve as a key technical leader, providing direction and mentorship to junior engineers
• Interface regularly with management, customers, and cross-functional teams
• Participate in technical issue resolution during integration, implementation, and testing phases