Job Type
Full-time
Description
NexGen Data Systems is seeking a visionary DevOps Engineer - Senior to manage cloud-native engineering backlogs, design Infrastructure as Code (IaC) solutions, and implement automated security gating for USTRANSCOM. The scope of this project involves providing high-level engineering oversight for secure DevSecOps software pipelines and designing automation for the command's security baselines. The DevOps Engineer - Senior serves as the primary technical authority for SCG backlog management, developing Terraform-based deployment scripts, and engineering XML-based XCCDF checklists for automated compliance scanning across the combatant command.
Roles & Responsibilities:- Manage the backlog of Cloud Service Offerings (CSOs) lacking DISA STIGs and map to corresponding enterprise security services.
- Develop custom Security Configuration Guides (SCGs) and process rule change requests to adapt to evolving threat profiles.
- Engineer XML-based XCCDF checklists to enable automated compliance scanning across cloud assets.
- Develop sample Infrastructure as Code (IaC) deployment manifests (e.g., Terraform) to automate the secure provisioning of SCG baselines.
- Provide ongoing compliance evaluations at CI/CD automated control gates and disposition pipeline false positives.
- Collaborate with the Cybersecurity Cloud SME to ensure engineering outputs align with DoD container security requirements.
- Comply with all DoD and USTRANSCOM cybersecurity regulations, physical/personnel security rules, and information protection policies.
Other Duties: Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
Requirements
Desired/Required Skills:- Active Department of Defense Secret level security clearance required (Must be eligible for Tier 5/TS-SCI for platform access).
- Must satisfy DoD 8570.01-M / DoDM 8140.03 requirements for consideration.
- Defense Cyber Crime Center (DC3) Cyber 101 course completion required.
- Bachelor's degree in Computer Science, Cloud Engineering, or related field.
- Minimum of 7 years of experience in DevSecOps, automation, and cloud security.
- Deep technical mastery of containerization mechanics (Docker, Kubernetes) and IaC configuration manifests (Terraform, Ansible).
- Expert knowledge of application security vulnerabilities, software composition analysis (SCA), and secure code testing paradigms.
- Proven ability to execute security updates in high-velocity CI/CD environments without stalling developer sprint cycles.
Benefits:- Company covers 100% of premiums for the employee's medical, dental, and vision insurance and subsidizes premiums for spouse and dependents.
- Company provides short and long term disability plans.
- 401(k) match up to 10% of the employee's salary contributions to 401(K) plan.
- Comprehensive training and development program.
- 11 paid holidays and paid time off (PTO) accrual level starts at 15 days annually.
