Senior Runtime/Config Management Engineer

About The Position

Requirements

• Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
• 10 or more years of progressive experience in systems or platform engineering, with demonstrated expertise in configuration management, runtime parameterization, and secure baseline governance for AI/ML model-serving environments in classified or federal government cloud contexts.
• Hands-on experience implementing and maintaining version-controlled configuration management frameworks within DevSecOps pipelines and container orchestration platforms such as Kubernetes, Helm, or equivalent tooling, including integration with secrets management systems and service mesh architectures across multi-enclave environments.
• Demonstrated experience operating within DoW or federal government cybersecurity compliance frameworks, including NIST 800-53 security controls, Zero Trust Architecture principles, and Risk Management Framework (RMF) requirements as they apply to configuration governance, cross-domain release sequencing, and enclave-specific operational safeguards.
• CompTIA A+ certification or equivalent, demonstrating validated foundational knowledge of IT systems, hardware, software, and operational support practices.
• Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).

Responsibilities

• Architects, operates, and governs configuration management and runtime parameterization supporting AI and machine learning model serving across Unclassified, Secret, and Top Secret enclaves within the War Data Platform (WDP) Core Integration enterprise.
• Establishes hardened configuration baselines, promotion parameters, runtime flags, and safe default operational states to maintain reliability, readiness, and mission assurance for model deployment activities supporting Combatant Commands, Joint Staff elements, Senior Executive Service leaders, and cross-agency analysts.
• Maintains configuration hygiene across enclaves by validating environment parity, resolving enclave-specific constraints, and integrating secure configuration controls aligned with DoW cybersecurity policies, cross-domain transfer requirements, Zero Trust directives, and NIST-derived operational safeguards.
• Integrates configuration logic into scanning pipelines, packaging workflows, model deployment runtimes, and serving endpoints to strengthen deterministic behavior and operational predictability during multi-domain promotions.
• Implements version-controlled configuration artifacts, automated validation routines, and runtime consistency checks within existing DevSecOps toolchains, container orchestration platforms, secrets management systems, and service mesh frameworks supporting enclave operations.
• Collaborates with model-serving engineers, pipeline teams, external integration engineers, cybersecurity personnel, and platform architects to synchronize configuration updates with test and evaluation gates, API exposure patterns, and cross-domain release sequencing.
• Produces configuration specifications, enclave compatibility matrices, change-control inputs, operational runbooks, and remediation reports that advance reliability, accelerate deployment cycles, and strengthen WDP Core Integration model-serving resilience across all networks.
• Performs other duties as assigned.