DevSecOps EngineerPosition Title: DevSecOps Engineer
Position Type: Full Time Employee
Location: Aberdeen Proving Ground (APG), MD
Clearance Requirement: Active Top Secret Clearance
Salary Range: $140,000 - $160,000
Start Date: Approx. 09/01
Position OverviewWe are seeking a DevSecOps Engineer to join our team in supporting critical U.S. Army mission applications. In this role, you will bridge the gap between software development, military-grade security compliance, and cloud operations.
You will be responsible for automating our deployment pipelines, hardening containerized workloads, managing secure infrastructure, and accelerating our path to a Continuous Authority to Operate (cATO) across multi-enclave environments.
Required QualificationsClearance & Certifications- Must possess an active TS security clearance.
- Must meet DoD 8570.01-M IAT Level II baseline certification requirements (e.g., CompTIA Security+ CE, CCNA Security, or equivalent) prior to start.
Cloud & Infrastructure- Experience provisioning and administering Azure/Azure Government cloud environments (AKS/Containers, Azure DevOps, ACR, Blob Storage).
- Experience deploying and managing workloads on Red Hat OpenShift using GitOps methodologies (e.g., ArgoCD, GitLab runners) with strict Dev/Stage/Prod separation.
- Experience deploying, scaling, and automating backups for database platforms, specifically MongoDB (replica sets) and PostgreSQL/pgAdmin within containerized environments.
DevSecOps & Automation- Working knowledge of application containerization, container hardening, Dockerfile creation and management, and automated container building and deployment processes.
- Hands-on experience building, securing, and maintaining robust CI/CD pipelines utilizing GitLab CI and/or Azure DevOps.
- Experience integrating automated security gates (SAST/DAST, Software Bill of Materials [SBOM]) and container scanning tools (e.g., Semgrep, Fortify, Grype, SonarQube) directly into deployment pipelines.
- Scripting proficiency in Python and PowerShell for infrastructure automation, system monitoring, data migration, and backup automation.
Security & Compliance- Experience automating and supporting Risk Management Framework (RMF) and Authority to Operate (ATO) processes, including generating artifacts for XACTA and/or eMASS, Privacy Impact Assessments, and Test Plan Management/Self-Assessments.
- Strong familiarity with DoD/IC Impact Level environments (IL4/IL5/IL6, IL7), STIG compliance, and associated security constraints.
- Experience integrating identity and access management (IAM) solutions such as Keycloak (OAuth, OIDC, SSO integration).
- Experience managing PKI and certificate lifecycles, including requesting, deploying, and rotating non-person entity (NPE) certificates.
General & Professional Skills- Experience working within a complex government/IC customer environment (e.g., Army, NGA), including coordinating technical requirements across multiple stakeholder teams.
- Strong written communication skills with the ability to generate clear technical documentation, standard operating procedures (SOPs), and status reports.
Preferred Qualifications- Hands-on experience operating within air-gapped, high-side, or JWICS network environments.
- Experience with Cross-Domain Solutions (CDS) or secure data transfer protocols between enclaves of varying classifications.
- Experience implementing centralized Secrets Management solutions (e.g., GitLab Secrets, Azure Key Vault).
- Full-stack application development experience or experience supporting developers with admin dashboards, API gateways, and data visualization/mapping tools (e.g., Leaflet).
- Experience with database schema design, standardization, and migration patterns across multiple database platforms (Postgres, SQL, Mongo).
- Strong verbal communication skills with a proven ability to brief complex technical capabilities to non-technical leadership or mixed audiences.
Benefits- Competitive compensation package and benefits.
- Professional development and certification opportunities.
- Collaborative and supportive team environment.