DevSecOps Engineer

Note: This position is contingent upon contract award. Applicants must be a U.S. Citizen with an active Secret clearance for this role.

Position Summary

The DevSecOps Engineer supports the design, development, and deployment of secure, scalable software solutions within a modern microservices architecture. This role partners with development teams to transition legacy systems into containerized environments, implement secure CI/CD pipelines, and integrate security practices throughout the software development lifecycle. The DevSecOps Engineer plays a key role in enabling automation, improving system reliability, and ensuring compliance with security standards.

Key Responsibilities

• Collaborate with software development teams to refactor existing applications and build new solutions using microservices architecture
• Design, implement, and maintain secure CI/CD pipelines to support continuous integration and delivery
• Integrate security tools and practices into all phases of the development lifecycle
• Support containerization efforts using technologies such as Docker and Kubernetes within hardened environments
• Deploy, monitor, and sustain microservices using commercial and open source tools
• Automate infrastructure provisioning and configuration management using infrastructure as code practices
• Identify vulnerabilities and implement remediation strategies across applications and environments
• Provide guidance and best practices for secure coding, system design, and DevSecOps processes
• Support system monitoring, logging, and performance optimization efforts

Required Qualifications

• 5 years of relevant experience in DevOps, DevSecOps, or software engineering environments
• Experience with CI/CD tools such as Jenkins, Azure DevOps, or GitHub Actions
• Experience with version control and artifact management tools such as Git, GitHub, Sonatype Nexus, or JFrog Artifactory
• Experience with containerization technologies such as Docker and orchestration tools such as Kubernetes and Helm
• Familiarity with cloud environments such as AWS, Azure, or Google Cloud
• Understanding of security practices including vulnerability scanning, secrets management, and compliance frameworks
• Experience with scripting or automation using languages such as Python, Bash, or PowerShell
• Strong problem solving skills and ability to work in a collaborative team environment
• Must have an Active Secret clearance currently

Preferred Qualifications

• Experience working in federal or regulated environments
• Experience with infrastructure as code tools such as Terraform, Ansible, or AWS CloudFormation
• Experience working in managed Kubernetes environments such as Azure AKS, AWS EKS, or Google GKE
• Experience with security tools such as Snyk, Black Duck, SonarQube, or Wiz
• Familiarity with secrets management solutions such as HashiCorp Vault, AWS Secrets Manager, or Google Secret Manager
• Knowledge of monitoring and telemetry tools such as Prometheus, Grafana, Splunk, or ELK
• Familiarity with serverless and microservices based architectures using AWS Lambda, Azure Functions, or Google Cloud Functions
• Understanding of zero trust architecture and secure system design principles

Compensation

The expected salary range for this position is $125,000-$157,000 annually. The actual compensation offered will be determined based on factors such as the candidate's experience, qualifications, skills, and location.

Benefits

• Medical coverage
• Dental coverage
• Vision coverage
• Life insurance
• Long-term disability coverage
• 401(k) plan
• Bonus opportunities
• Paid holidays
• Paid time off