Senior DevSecOps Engineer

Parsons CorporationBoulder, CO
$148,300 - $266,900Onsite

About The Position

Parsons is looking for a sharp Senior DevSecOps Engineer to join our growing team in Boulder, CO! In this fully onsite role, you will be a hands-on technical leader for a small, fast-moving program team supporting a classified space portfolio. You will drive DevSecOps practices across multiple projects, architect secure-by-design solutions, and build and maintain robust CI/CD pipelines and infrastructure that meet stringent mission and security requirements. This role is ideal for a self-starter who is comfortable leading, coding, automating, and collaborating across engineering, cybersecurity, and operations teams.

Requirements

  • Active DoD Secret clearance, with eligibility and willingness to obtain TS/SCI
  • 10+ years of professional experience, with additional education able to count towards total years of experience. Potential flexibility pending Customer approval.
  • Bachelor’s degree, or additional years of experience in lieu of a degree
  • Professional software/DevSecOps experience in mission-critical defense, space, or aerospace environments; familiarity with DoD DevSecOps, Agile, NIST controls, and OWASP Top 10
  • Strong Linux (RHEL) administration and scripting skills (Bash, Python), including system hardening, automation, and troubleshooting across storage, OS, application, and network layers
  • Proficiency in at least one major programming language (e.g., Java, C#, Python, Go, JavaScript/TypeScript) and associated frameworks, plus Git-based workflows and collaboration tools
  • Hands-on experience with containers and orchestration (Kubernetes with RKE2, OpenShift, or Rancher) and managing binary/container registries (Artifactory, Docker Registry, Harbor, Nexus)
  • Expertise in DevOps/DevSecOps practices: CI/CD pipeline design and operation, integrating security controls (SAST, DAST, SCA, container scanning, secret management), and secure SDLC implementation
  • Advanced Infrastructure as Code and cloud skills: Terraform, Ansible, CloudFormation, Pulumi; building and managing AWS/Azure/GCP environments with monitoring/observability
  • Experience with policy-as-code and compliance-as-code solutions (e.g., OPA, Conftest, Checkov)

Nice To Haves

  • Prior experience supporting classified space or defense programs
  • Familiarity with Model-Based Systems Engineering (MBSE) tools and methods
  • Experience with systems engineering processes, including requirements analysis, design, integration, verification, and validation
  • Experience with configuration management and maintaining traceability between software baselines, infrastructure code, and DevSecOps artifacts
  • Experience with test automation and GitLab CI/CD or similar CI/CD platforms
  • Experience supporting AI/ML application infrastructure and associated data pipelines in secure environments
  • Experience with virtualized hosts and platforms (e.g., VMware)
  • Basic network understanding and diagnostics, including TCP/IP, routing, firewalls, and VPNs
  • Experience writing or contributing to acquisition and program documents such as architecture/design volumes, IMP/IMS, RFP responses, and technical proposals
  • Relevant certifications, such as: Cloud: AWS/Azure/GCP Architect or DevOps Engineer, DevOps/DevSecOps: Kubernetes (CKA/CKS), CI/CD tooling certifications, Security: CISSP, CCSP, CSSLP, Security+, or equivalent

Responsibilities

  • Lead DevSecOps initiatives across multiple enclaves and projects, serving as a primary technical point of contact for secure software and infrastructure delivery
  • Architect, implement, and maintain secure cloud and on-prem environments using Infrastructure as Code toolsets such as Terraform, Ansible, CloudFormation, or Pulumi
  • Design, build, and operate automated CI/CD pipelines (e.g., GitLab CI, GitHub Actions, Azure DevOps, Jenkins) with integrated security controls including SAST, DAST, SCA, container image scanning, and secret management
  • Implement, harden, and manage containerized workloads using Docker and Kubernetes (including RKE2, OpenShift, or Rancher), leveraging Helm, Kustomize, and umbrella charts to deploy and manage complex, multi-service systems
  • Provide expert Linux systems administration on Red Hat Enterprise Linux, including troubleshooting issues across storage, operating systems, applications, and networks in classified or mission-critical environments
  • Integrate security into the SDLC by enforcing secure coding practices, performing code and pipeline reviews, and mentoring developers on DevSecOps and application security principles (including OWASP Top 10)
  • Establish and maintain observability capabilities (logging, metrics, tracing, alerting) to support reliability, incident response, and performance monitoring for mission systems
  • Identify, prioritize, and drive remediation of vulnerabilities across applications, containers, hosts, and infrastructure, in alignment with NIST controls and DoD DevSecOps guidance
  • Implement and maintain DAST and SAST tools in coordination with ISSOs, system security engineers, and development teams to support RMF Assessment and Authorization (A&A) efforts and continuous monitoring
  • Utilize and manage binary registries (e.g., Artifactory, Harbor, Docker Registry, Nexus) and package repositories in secure environments, ensuring compliance with program policies and security baselines
  • Support and enhance compliance- and policy-as-code solutions (e.g., OPA, Conftest, Checkov) to enforce security baselines, configuration standards, and deployment guardrails across Kubernetes, cloud, and IaC artifacts
  • Collaborate with systems engineering, cybersecurity, operations, and vendor teams to ensure software and infrastructure designs meet security, performance, availability, and accreditation requirements
  • Support and contribute to program documentation and security artifacts, including architecture and deployment documentation, security plans, DevSecOps process documentation, and material for technical reviews and readiness events
  • Work with Product Owners and Scrum Masters to translate security and DevSecOps requirements into actionable user stories and tasks; support Agile ceremonies and iterative delivery of secure capabilities
  • Drive continuous improvement in automation, tooling, and processes to increase deployment frequency, reduce change failure rates, and strengthen the overall security posture of the program

Benefits

  • medical
  • dental
  • vision
  • paid time off
  • 401(k)
  • life insurance
  • flexible work schedules
  • holidays
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service