Sr. DevSecOps Engineer II (6546)

MetroStar•Washington, DC

About The Position

As a Sr. DevSecOps Engineer II, you’ll design, implement, and sustain secure, automated CI/CD pipelines and infrastructure across hybrid on‐premises and cloud environments. This role integrates security controls directly into DevOps workflows, enabling continuous compliance, monitoring, and resilient system operations. The engineer partners closely with cybersecurity and infrastructure teams to support secure platform migrations, enforce hardened configurations, and ensure system integrity within classified and mission‐critical environments. The ideal candidate brings strong experience with Infrastructure as Code (IaC), containerized platforms, and CI/CD automation, along with a deep understanding of security frameworks such as RMF, NIST 800‐53, and STIGs. An active TS/SCI clearance is required, and experience supporting enclave-based or air‐gapped systems is highly valued. We know that you can’t have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers.

Requirements

Active TS/SCI security clearance.
5+ years of hands‐on DevSecOps experience in secure or classified environments, with 8+ years of overall experience in DevSecOps or related engineering disciplines.
Experience with Infrastructure-as-Code tools (e.g., Terraform, CloudFormation, Ansible).
Experience with Containerization and Orchestration tools (e.g., Docker and Kubernetes).
Experience with CI/CD tools (e.g., Jenkins, GitLab CI/CD, Azure DevOps).
Experience with hybrid environments such as VMware and Cloud platforms (e.g., AWS, Azure, GCP).
Experience implementing security compliance frameworks (e.g., RMF, NIST 800-53, STIGs), and integrating security tools into pipelines (e.g., vulnerability scanning, secrets management).
Proficiency with Python, Bash, or PowerShell.

Nice To Haves

Experience supporting enclave-based or air‐gapped systems is highly valued.

Responsibilities

Design, implement, and maintain secure CI/CD pipelines for deployment of security tools and supporting infrastructure.
Automate infrastructure provisioning using Infrastructure as Code (IaC) across on-prem VMware and cloud environments.
Integrate security controls (SAST, DAST, container scanning, compliance checks) into DevOps workflows.
Support migration of security platforms into a dedicated enclave, ensuring minimal downtime and data integrity.
Collaborate with cybersecurity and infrastructure teams to enforce secure configurations and continuous monitoring.
Implement logging, monitoring, and alerting pipelines for system and application health.