Overview:
We are seeking a Senior DevOps Engineer to support the modernization of Data Systems with a primary focus on DevSecOps in Azure Cloud. This role involves designing, implementing, and maintaining secure CI/CD pipelines and cloud infrastructure within sensitive and classified environments to ensure delivery of mission-critical data analysis and machine learning applications. The ideal candidate will have extensive experience with Azure Cloud, Azure DevOps and other modern DevSecOps tooling, Department of Commerce (DoC) and/or Department of War (DoW) compute environments and security compliance and modern infrastructure automation practices.
Key Responsibilities:
Infrastructure & Cloud Management:
- Design, deploy, and manage Azure Cloud architecture within DoC guidelines
- Manage Infrastructure as Code (IaC) deployments
- Ensure compliance with DoC security requirements and best practices
- Lead cross-functional teams in defining secure infrastructure requirements
CI/CD Pipeline Development:
- Develop and maintain secure CI/CD pipelines
- Implement deployment strategies aligned with DoC security protocols
- Automate build, test, and deployment processes using Azure DevOps Pipelines
- Ensure code security through pipeline integration
Security & Compliance:
- Implement and maintain security controls per DoC requirements
- Conduct security assessments and vulnerability remediation
- Collaborate with security teams on RMF documentation
- Ensure continuous compliance with DoC security standards
System Reliability:
- Monitor system performance and security
- Implement logging and monitoring solutions Lead incident response and problem resolution
- Ensure resilience and high availability for mission-critical systems
Locations:
Travel Requirement: ~10% Travel in DC Metro Area and other Domestic Locations
Required Qualifications:
- Eligible for Secret clearance
- Current Security+ certification (or must obtain within 30 days)
- One of the following:
- Bachelor's degree in Computer Science, Engineering, or related field with 5+ years of DevOps experience
- 8+ years of relevant DevOps/Cloud engineering experience
- Experience with Azure DevOps implementing DevSecOps pipelines in commercial and classified environments.
- Experience with the container ecosystem - Kubernetes, Helm, Docker, etc.
- Infrastructure as Code (IaC) automation
- Experience with Azure Commercial Cloud and Azure Government Cloud
- Strong scripting skills in Python or other languages
- Experience with identity and access management solutions, specifically Microsoft Entra and Keycloak
- Hands-on experience with CAC/PIV and PKI implementations in secure environments
Preferred Qualifications
- Experience implementing DoW Security Technical Implementation Guides (STIGs)
- Strong understanding of the Risk Management Framework (RMF)
- Knowledge of DoC security documentation requirements
- Experience with security scanning tools (Nessus, SonarQube, Aqua Security, or similar) and remediation
- Database administration (SQL, NoSQL, Vector, etc.)
- Elasticsearch/OpenSearch administration
- Version control
- Linux administration
- Experience in data engineering tools and technologies like Databricks, Spark, Hadoop, and data warehousing solutions
- Familiarity with machine learning concepts and tools
- Experience with data visualization tools like Power BI or Tableau
- Relevant cloud security certifications (e.g., Azure Security Engineer Associate)
Benefits:
Expression offers competitive salaries and benefits, such as:
- 401k matching
- PPO and HDHP medical/dental/vision insurance
- Education reimbursement
- Complimentary life insurance
- Generous PTO and holiday leave
- Onsite office gym access
- Commuter Benefits Plan