Chief DevSecOps Engineer #1684973

About NDi:

Network Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi's firmly defined core values have driven all aspects of the business, which have been paramount to our company's success and the establishment of an enjoyable workplace atmosphere. At NDi, we believe that our people are the cornerstone of our success, and we value collaboration, career growth, and winning ideas. Military Veterans Encouraged to Apply.

Job Description:

The Chief DevSecOps Engineer serves as the senior technical authority for secure software delivery across the Veteran Experience Services Eligibility & Enrollment (VESEE) 2.0 program. This role is responsible for architecting, implementing, and governing the end-to-end DevSecOps ecosystem that will support modernization of the Veterans Health Administration (VHA) Enrollment System (ES) and the migration of legacy systems. This leader ensures security is embedded at every layer of the CI/CD pipeline, implements automation across infrastructure and testing, and drives compliance with all VA cybersecurity, privacy, and Risk Management Framework (RMF) requirements. The position plays a critical role in delivering a highly reliable, scalable, and compliant platform supporting millions of Veteran enrollment transactions.

Requirements:

• U.S Citizenship required.
• Must be able to obtain and maintain a Public Trust clearance
• This position is remote but may require occasional onsite meetings in McLean, VA.
• You can be based out of following states: AZ, DC, FL, GA, OH, ME, MD, SC, TX, UT, VA, NC, OK, WV.

Qualifications and Experience:

• Bachelor's degree in Computer Science, Engineering, Cybersecurity, or related discipline (Master's preferred).
  
• Minimum 10+ years of hands-on DevSecOps, Cloud Engineering, or Secure Software Delivery experience.
  
• Experience supporting federal programs with elevated security requirements (DHS, VA, DoD, HHS, etc.).
  
• Background in large-scale modernization, cloud migration, and modernization of legacy systems.
• Expert understanding of CI/CD and cloud-native engineering
  
• Strong knowledge of federal cybersecurity requirements
  
• Ability to lead cross-functional technical teams
  
• Ability to translate security requirements into automated pipeline controls
  
• Strong communication and stakeholder engagement skills
  
• Demonstrated commitment to continuous improvement and reliability engineering

Required Technical Skills:

• Languages & Frameworks: Java 17+, Spring Boot, Spring WebFlux, Streams API, Scripted automation (Python, Bash)
  
• Cloud & Infrastructure: AWS (GovCloud or VAEC strongly preferred), Kubernetes (EKS), Docker, Terraform, Ansible, Helm, GitHub Actions
  
• DevSecOps Toolchain: GitHub Enterprise, Jenkins, SonarQube, Nexus/Artifactory, SAST/DAST/SCA tools, IaC security tools (Checkov, tfsec)
  
• Observability & Monitoring: Dynatrace, Splunk, CloudWatch
  
• Security & Compliance: NIST SP 800-53, RMF, FISMA, FedRAMP, Zero Trust, OAuth2/OpenID Connect, TLS 1.3, Container security and compliance scanning

Preferrred Certifications:

• CompTIA Security+, CISSP, or CISM
• SAFe DevOps Practitioner (SDP) or SAFe Architect
• AWS Certified DevOps Engineer
• CKA/CKAD (Kubernetes Certifications)
• ITIL v4

Responsibilities

DevSecOps Architecture & Engineering Leadership:

• Design, implement, and oversee the VESEE DevSecOps toolchain supporting CI/CD, automated testing, code scanning, container security, and deployment.
• Architect secure, cloud-native pipelines for Java 17+, Spring Boot, Spring WebFlux, Kafka, Redis, Oracle, and React/Next.js applications deployed to AWS VAEC using Kubernetes and Docker.
  
• Define and enforce security, reliability, and operations standards across all development and modernization tasks.
  
• Lead implementation of Zero Trust, container hardening, and secure-by-design controls aligned to NIST 800-53 Rev5, FISMA, and VA Directive 6500.

Security & Compliance Governance:

• Serve as the authoritative owner of CI/CD security, code quality, secrets management, and compliance validation.
• Integrate automated tools for SAST, DAST, SCA, IaC scanning, dependency checking, and container scanning.

Ensure all DevSecOps pipelines meet requirements of:

• FedRAMP High
• FIPS 140-3
• HIPAA
• VA Identity, Credential, and Access Management (ICAM) policies
• 508 accessibility checks where applicable
• Support development teams in achieving Authority to Operate (ATO) sustainment in partnership with VA OIS.

Automation, Observability & Reliability Engineering:

• Implement end-to-end automation for build, test, deploy, and monitor stages across all environments (development, integration, staging, production).
• Integrate observability tools (e.g., Splunk, Dynatrace, CloudWatch) to support proactive monitoring, alerting, and performance optimization.
• Drive "shift-left" quality by enforcing test automation standards (unit, integration, regression, 508 testing).
• Ensure VESEE systems meet performance thresholds, including throughput, latency, and reliability requirements cited in the RFP and VESEE tech stack documents.

Collaboration & Technical Leadership:

• Serve as senior technical advisor to the Program Manager, Principal Senior Software Engineer, Release/Delivery Manager, and VA architecture teams.
• Lead DevSecOps discussions during Sprint Planning, PI Planning, and Release Readiness.
• Mentor developers, DevSecOps engineers, and infrastructure staff in secure engineering best practices.
• Coordinate with the Business, Data, QA, and HCD teams to ensure secure, automated workflows across the entire delivery lifecycle.

Compensation and Benefits:

At NDi, we value our team and are committed to retaining top talent by offering competitive benefits and compensation packages. Our employee benefits package includes comprehensive health, dental, vision, pet, and legal insurance. Our corporate benefits include 401(k) retirement matching, paid leave, paid holidays, and health and wellness programs. In addition, we provide employer-paid life and disability insurance, professional development, education benefits, and much more to ensure our team has the resources they need to thrive on and off the job.

Veterans First Commitment:

As a Service-Disabled Veteran-Owned Small Business (SDVOSB), NDi is dedicated to hiring veterans and providing a supportive work environment that honors their service while recognizing the unique skills and experiences they bring to our organization.

Commitment to Diversity:

NDi is an Equal Opportunity Employer. We are committed to creating a diverse environment and are proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran or military status, citizenship, national origin, or any other basis prohibited by law in all phases of the employment process and compliance with applicable federal, state, and local laws and regulations. As a federal government contractor, NDi complies with all applicable affirmative action requirements.

Apply Now:

Take advantage of this unique opportunity to join one of the fastest-growing companies in Federal contracting!