Senior DevSecOps Engineer

About The Position

Requirements

• Active Secret Security Clearance
• 5+ years' experience in Linux (RHEL/CentOS preferred) System Administration.
• 3+ years' experience building and managing CI/CD pipelines, with hands-on proficiency in both GitLab CI/CD and Jenkins.
• Hands-on experience with datacenter/lab management, including server racking, cabling, and bare-metal OS installation.
• Strong experience with VMware vSphere/ESXi administration (vCenter, virtual networking, datastore management).
• Proven experience working in and bridging both connected and air-gapped network environments.
• Experience administering Jenkins servers, including plugin management and offline maintenance.
• Demonstrated experience setting up, configuring, and maintaining GitLab Runners.
• Strong proficiency with Infrastructure as Code (IaC) tools, particularly Ansible .
• Proficiency with at least one scripting language (Python preferred).
• CompTIA Security+ or equivalent; CompTIA Linux+ or equivalent (RHEL preferred); Cisco CCNA or equivalent
• Manage and prioritize workload with minimal supervision.
• Strong organizational skills and attention to detail.
• Excellent written and oral communications skills with experience supporting government clients onsite.
• Ability to develop/document/implement new processes
• Ability to solve complex problems independently and own projects from conception to completion.

Responsibilities

• Own and administer the on-premise Linux (RHEL) server environment in both connected and air-gapped zones, including patching, STIG hardening, and performance tuning.
• Administer the air-gapped Jenkins instance, including managing plugins, nodes, jobs, and security in a completely disconnected state.
• Administer the VMware vSphere/ESXi environment, including managing hosts, vCenter, datastores, and the provisioning and lifecycle of all virtual machines.
• Perform hands-on, full-stack infrastructure builds, including server racking, network cabling, power configuration (UPS), and bare-metal OS installation.
• Continuously evaluate the infrastructure for performance and scalability; research, propose, and lead the implementation of new technologies and upgrades.
• Design, build, and operate a dual CI/CD environment: using GitLab CI/CD for builds and automation in the connected network, and Jenkins for deployment and testing orchestration within the air-gapped network.
• Register, configure, and maintain dedicated GitLab Runners in the connected on-premise environment.
• As a GitLab group owner, manage group-level settings, CI/CD variables, permissions, and repository configurations.
• Utilize Ansible to automate infrastructure provisioning, configuration management, and compliance enforcement across all systems.
• Establish and manage secure processes for transferring software artifacts, dependencies, and scan results between the connected and air-gapped environments.
• Implement and audit government security directives (STIGs, RMF) across all on-premise physical and virtual systems.
• Perform and analyze ACAS/Nessus and Security Content Automation Protocol (SCAP) scans; lead the remediation of all findings.
• Proactively monitor system health and security across both networks, diagnosing and resolving issues without internet access in the air-gapped lab.

Benefits

• Paid Time Off
• Holidays
• Health Insurance
• Dental Insurance
• Vision Insurance
• Flexible Spending Account
• 401(k)
• Life AD&D