Senior Cloud Solution Engineer
About The Position
MTSI is seeking a Senior Cloud & DevSecOps Engineer to join our team at the Missile Defense Agency in Colorado Springs, CO. This role will help a team accelerate the delivery of secure software capabilities to the warfighter. In this critical role, you will architect mission workloads and build the automated DevSecOps pipelines required to deploy them across Impact Level 5 and 6 (IL5/IL6) environments. You will lead the modernization of legacy defense applications, designing cloud-native architectures targeted for AWS GovCloud, Azure Government, and high-side on-premise VMware vSphere data centers. Your primary objective is to implement a "secure by design" software factory that supports Continuous Authority to Operate (cATO) pathways, ensuring that mission-critical code is deployed rapidly, securely, and in strict compliance with DoW cybersecurity mandates.
Requirements
- Must possess an active DoD Secret or Top Secret clearance. (TS/SCI preferred).
- Must meet DoD 8140/8570 IASAE Level II or III requirements (e.g., CISSP, CASP+, or CISSP-ISSEP).
- 8-10 years in IT infrastructure or software engineering, with at least 5 years architecting cloud workloads or building DevSecOps pipelines in federal/DoD environments.
- Proven, hands-on experience designing architectures that span AWS GovCloud, Azure Government, and on-premise VMware vSphere environments (vCenter, ESXi, NSX).
- Deep practical knowledge of containerization (Docker/Kubernetes), CI/CD orchestration (e.g., GitLab CI, Jenkins), and integrating security scanners (e.g., SonarQube, Fortify, Twistlock).
- Extensive experience with AWS CloudFormation and/or Terraform for deploying infrastructure in highly regulated environments.
Nice To Haves
- AWS Certified DevOps Engineer - Professional, Azure DevOps Engineer Expert, or CKA (Certified Kubernetes Administrator).
- Strong proficiency in Python, Bash, Typescript, or PowerShell for building complex automation and pipeline glue logic.
- Bachelor’s or Master's degree in Computer Science, Software Engineering, Cybersecurity, or a related technical discipline.
Responsibilities
- Analyze legacy DoW application portfolios and design target-state architectures for IL5/IL6 environments. Re-platform workloads using hardened containers (e.g., DoD Iron Bank) and Kubernetes, or re-architect for cloud-native services to enhance mission resilience.
- Architect and implement end-to-end CI/CD pipelines aligned with the DoD Enterprise DevSecOps Reference Design. Build the automation framework necessary to support a Continuous Authority to Operate (cATO), integrating source control, build automation, and deployment strategies.
- Embed automated security controls directly into the pipeline. Implement SAST/DAST/SCA scanning, automated DISA STIG compliance checks, and Open Policy Agent (OPA) guardrails to ensure all deployments meet Risk Management Framework (RMF) requirements prior to release.
- Develop and enforce modular IaC templates (AWS CloudFormation, Azure ARM, Terraform) to define and provision hybrid mission environments. Ensure all infrastructure deployments are version-controlled, repeatable, and peer-reviewed.
- Provide technical leadership for transitioning workloads from legacy on-premise SIPR/NIPR environments to AWS GovCloud/Secret and Azure Government. Design the automation to execute migrations with zero mission degradation.
Benefits
- full range of medical, financial, and other benefits, dependent on the position offered.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
