OST, Inc.

Sr. Cybersecurity / DevSecOps Engineer

OST, Inc.$100K — $130K *
Aerospace & Defense
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or related field
  • Minimum 10 years of experience in cybersecurity engineering or DevSecOps within DoD or Federal environments
  • Experience with secure software development and CI/CD pipelines
  • Familiarity with RMF or similar compliance frameworks and vulnerability scanning
  • Understanding of Army training systems and TADSS architectures
  • Relevant certifications like Security+, CISSP, or CISM required
  • Active Secret clearance is mandatory

Responsibilities

  • Provide cybersecurity engineering and DevSecOps support throughout TADSS lifecycle
  • Integrate cybersecurity requirements into system architectures and pipelines
  • Support secure software development practices and automate continuous delivery
  • Collaborate with engineering and acquisition teams on cybersecurity considerations
  • Assist with Risk Management Framework (RMF) activities and compliance documentation
  • Implement and support vulnerability scanning, remediation, and monitoring
  • Offer technical recommendations to enhance system security and DevSecOps practices

Benefits

  • Comprehensive health and dental insurance
  • Retirement savings plan with employer matching
  • Generous PTO and holidays
  • Professional development and training opportunities
  • Flexible work hours and potential remote work options
Full Job Description
Sr. Cybersecurity / DevSecOps Engineer

Description of specific duties in a typical workday for this position:
  • The Sr. Cybersecurity / DevSecOps Engineer provides cybersecurity engineering and DevSecOps support ensuring TADSS software, systems, and integrated capabilities are designed, developed, tested, deployed, and sustained with security embedded throughout the lifecycle. The individual supports secure, resilient, and compliant delivery of training systems across development, integration, and operational environments.
  • Responsibilities include integrating cybersecurity requirements and controls into system architectures and DevSecOps pipelines; supporting secure software development practices; and implementing automation to enable continuous integration, testing, security scanning, and deployment of TADSS capabilities. The Sr. Cybersecurity / DevSecOps Engineer collaborates with systems engineers, software engineers, test engineers, and acquisition personnel to ensure cybersecurity considerations are incorporated into TADSS design, integration, and modernization efforts.
  • Additional duties include supporting Risk Management Framework (RMF) activities; assisting with system categorization, control implementation, assessment, and authorization artifacts; supporting vulnerability scanning, remediation, and continuous monitoring; and implementing identity, credential, and access management (ICAM) controls. The role supports cybersecurity documentation, security test results, and compliance evidence and assists with security validation during integration, testing, and Government Acceptance Testing (GAT).
  • The Sr. Cybersecurity / DevSecOps Engineer provides technical recommendations to improve system security, automation, and resilience and supports continuous improvement of secure DevSecOps practices across portfolios.


Requirements (Years of experience, Education, Certifications):
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related technical discipline
  • Minimum of 10 years of experience supporting cybersecurity engineering, DevSecOps, or secure system development within a DoD or Federal environment
  • Demonstrated experience with:
    • Secure software development and DevSecOps pipelines
    • CI/CD automation and tooling
    • RMF or similar cybersecurity compliance frameworks
    • Vulnerability scanning and remediation
    • Security monitoring and incident response support
    • Collaboration across engineering, test, and acquisition teams
  • Experience supporting Army training systems
  • Familiarity with:
    • TADSS architectures and software-intensive training systems
    • DevSecOps tools (e.g., Git-based repositories, CI/CD platforms, container security)
    • NIST SP 800-series publications and RMF tools
  • Certifications such as:
    • Security+, CISSP, CISM, or similar
    • Cloud security or DevSecOps certifications
  • Active Secret clearance is required

This is a full-time position paying a base salary, full benefits, and has possible bonus potential based on merit and performance. To be considered for this position, please apply online with a resume.

About OST, Inc.

OST, Inc. is a technology consulting firm that provides software development, data analytics, and digital transformation services to clients in various industries. The company was founded in 1997 and is headquartered in Emeryville, California. OST, Inc. has worked with clients such as the U.S. Department of Defense, the U.S. Department of Agriculture, and the U.S. Department of Health and Human Services.
Learn more about OST, Inc.
Size
200 employees
Industry

Similar Jobs

More Jobs at OST, Inc.

More Aerospace & Defense Jobs

Find similar Sr. Cybersecurity / DevSecOps Engineer jobs: