Travel Requirement: Up to 10%
Security Clearance: Active Secret clearance required (interim OK)
Citizenship: US Citizenship required
Job Description:Sherpa 6 is seeking a Lead DevSecOps Engineer to oversee the secure design, automation, and execution of our software delivery pipelines. We build mission-critical systems for the Department of Defense (DoD) and commercial customers where security, reliability, and compliance are essential. This role is responsible for integrating security throughout the software development lifecycle, automating infrastructure and deployments, and ensuring consistent, compliant releases across all environments. The ideal candidate is a hands-on technical leader who can drive DevSecOps best practices while collaborating across engineering, QA, security, and program teams.
Responsibilities:- Lead the design and implementation of secure CI/CD pipelines across development, staging, and production environments.
- Own the end-to-end software release process, ensuring reliability, traceability, and compliance.
- Integrate automated security scanning (SAST, DAST, dependency, container) into build and deployment workflows.
- Develop and maintain Infrastructure as Code (IaC) using Terraform or Pulumi to provision and manage cloud environments.
- Ensure compliance with DoD and industry security standards (e.g., RMF, NIST, STIGs).
- Collaborate with development and QA teams to validate release readiness and enforce quality gates.
- Monitor, troubleshoot, and resolve build, deployment, and infrastructure issues.
- Implement logging, monitoring, and observability best practices across environments.
- Drive process improvements to increase automation, efficiency, and deployment reliability.
- Maintain release documentation, runbooks, and security artifacts required for audits and ATO support.
- Mentor junior and mid-level DevSecOps engineers to enhance their skillsets and grow a team
Requirements
- Bachelor's degree in Computer Science, Engineering, or related field (or equivalent experience).
- 10+ years of experience in software release engineering, build engineering, DevOps, or related field.
- Hands-on experience with CI/CD tools (e.g., GitLab, Jenkins, Azure DevOps).
- Strong knowledge of source control systems (Git, branching strategies, tagging).
- Experience with scripting and automation (e.g., Python, Bash, Groovy, PowerShell).
- Familiarity with containerization and orchestration (Docker, Kubernetes).
- Solid understanding of software development lifecycle (SDLC) and agile methodologies.
- Excellent analytical and problem-solving skills, with a keen attention to detail.
- Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams
- Must be a US citizen
Qualities of Exceptional Candidates: - Experience with developing and configuring solutions for integrating automated security tasks, such as scans and documentation, into CI/CD pipelines or IT workflows
- Knowledge of Linux operating systems
- Experience working in the DoD or government realms is a plus.
- Familiarity with DISA STIGs and automated scanning
BenefitsWe offer a competitive benefits package, covering the cost of medical for you and your family; we also offer dental, vision, health and wellness benefits and a generous retirement savings plan. We believe that our employees can manage their workload and their personal life, therefore we extend a generous PTO policy. This allows our employees to balance their lives as they see fit.
Salary RangeThe proposed salary range is reflective across all Sherpa 6 locations, years of experience, and skill levels. Salary negotiations will be based on a host of factors including but not limited to your geographic location, prior experience, relevant skills, education, and certifications.
Salary Description
$120,000-$150,000