DevSecOps Engineer

Note: This position is contingent upon contract award. Applicants must be a U.S. Citizen with an active Secret clearance for this role.

Position Summary

The DevSecOps Engineer supports the design, development, and deployment of secure, scalable software solutions within a modern microservices architecture. This role partners with development teams to transition legacy systems into containerized environments, implement secure CI CD pipelines, and integrate security practices throughout the software development lifecycle. The DevSecOps Engineer plays a key role in enabling automation, improving system reliability, and ensuring compliance with security standards.

Key Responsibilities

• Collaborate with software development teams to refactor existing applications and build new solutions using microservices architecture
• Design, implement, and maintain secure CI CD pipelines to support continuous integration and delivery
• Integrate security tools and practices into all phases of the development lifecycle
• Support containerization efforts using technologies such as Docker and Kubernetes within hardened environments
• Deploy, monitor, and sustain microservices using commercial and open source tools
• Automate infrastructure provisioning and configuration management using infrastructure as code practices
• Identify vulnerabilities and implement remediation strategies across applications and environments
• Provide guidance and best practices for secure coding, system design, and DevSecOps processes
• Support system monitoring, logging, and performance optimization efforts

Required Qualifications

• 5 years of relevant experience in DevOps, DevSecOps, or software engineering environments
• Experience with CI CD tools such as Jenkins, Azure DevOps, or GitHub Actions
• Experience with version control and artifact management tools such as Git, GitHub, Sonatype Nexus, or JFrog Artifactory
• Experience with containerization technologies such as Docker and orchestration tools such as Kubernetes and Helm
• Familiarity with cloud environments such as AWS, Azure, or Google Cloud
• Understanding of security practices including vulnerability scanning, secrets management, and compliance frameworks
• Experience with scripting or automation using languages such as Python, Bash, or PowerShell
• Strong problem solving skills and ability to work in a collaborative team environment
• Must have an Active Secret clearance currently

Preferred Qualifications

• Experience working in federal or regulated environments
• Experience with infrastructure as code tools such as Terraform, Ansible, or AWS CloudFormation
• Experience working in managed Kubernetes environments such as Azure AKS, AWS EKS, or Google GKE
• Experience with security tools such as Snyk, Black Duck, SonarQube, or Wiz
• Familiarity with secrets management solutions such as HashiCorp Vault, AWS Secrets Manager, or Google Secret Manager
• Knowledge of monitoring and telemetry tools such as Prometheus, Grafana, Splunk, or ELK
• Familiarity with serverless and microservices based architectures using AWS Lambda, Azure Functions, or Google Cloud Functions
• Understanding of zero trust architecture and secure system design principles

Compensation

In accordance with pay transparency law, the expected salary range for this position is $125,000-$157,000 annually. The actual compensation offered will be determined based on factors such as the candidate's experience, qualifications, skills, and location. We are committed to fair and equitable compensation practices. This posted range reflects our good faith estimate of the compensation we reasonably expect to offer for this role at the time of posting.

Benefits

C5MI offers a market competitive suite of benefits including medical, dental, vision, life, and long-term disability coverage, a 401(k) plan, bonus opportunities, paid holidays, and paid time off.