DevSecOps Engineer

The DevSecOps Engineer is responsible for designing, developing, and maintaining secure software delivery pipelines and cloud-native infrastructure. This role requires hands-on expertise in scripting, automation, containerization, and AWS services, along with adhering to best security practices throughout the software development lifecycle (SDLC). The DevSecOps Engineer will collaborate with cross-functional teams—including software engineers, system administrators, and product owners—to ensure the delivery of high-quality, secure, and compliant solutions.

Key Responsibilities: 

Scripting & Automation:

• Develop and maintain Python and Bash scripts to automate recurring tasks, enhance operational efficiency, and support CI/CD pipelines.
• Integrate scripts with Jenkins pipelines for robust build, test, and deployment automation.

Cloud Infrastructure & AWS Services:

• Design, deploy, and maintain secure, scalable solutions on AWS.
• Manage and optimize containerized workloads in AWS and on-premise environments.

Security & Certificates:

• Oversee certificate management for secure communication channels and applications.
• Implement software vulnerability mitigation and infrastructure security best practices throughout the SDLC.

Container Orchestration & Kubernetes:

• Deploy and manage Kubernetes clusters, ensuring high availability and scalability of containerized applications.
• Monitor cluster health, troubleshoot issues, and optimize resource usage.

Systems & Infrastructure Administration:

• Administer Linux environments, including user management, patching, and performance tuning.
• Oversee software dependency management and infrastructure dependency management to ensure consistent, secure, and stable environments.

Legacy Code Debugging & Maintenance:

• Troubleshoot and resolve issues in legacy codebases, offering guidance on refactoring, performance improvement, and modernization.

Technical Design & Documentation:

• Develop detailed design documents, architectural diagrams, and operational runbooks.
• Ensure system changes are thoroughly documented and adhere to compliance and regulatory requirements.

Collaboration & Communication:

• Work closely with leadership and stakeholders to communicate project progress, risks, and requirements.
• Provide technical guidance and mentorship to junior staff members.

Networking & Infrastructure:

• Apply computer networking fundamentals to optimize and secure data flow, ensuring reliability and redundancy.
• Collaborate with network teams to integrate on-premise and cloud environments seamlessly.

Low Priority/Ad-Hoc Tools (as needed):

• Utilize Jira for task tracking and project management.
• Provide minimal support for Apache Spark environments if required.

• U.S. Citizenship
• Active Top-Secret Clearance with SCI Eligibility, and polygraph
• Bachelor’s degree in Computer Science, Information Security, or a related field; or equivalent work experience.
• 2+ years relevant experience in DevOps, DevSecOps, or related software engineering roles.

Preferred skills or experience:

• Technical:
  • Proficiency in Bash for scripting and automation.
  • In-depth understanding of Jenkins or similar CI/CD tools.
  • Hands-on experience with AWS and containerization technologies (Docker, Kubernetes).
  • Strong background in Linux systems administration and networking concepts.
  • Familiarity with infrastructure as code (e.g., Terraform, CloudFormation) is a plus.
  • Knowledge of security best practices, including certificate management,  vulnerability scanning, and patching.
• Soft Skills & Competencies:
  • Excellent communication skills to interact with leadership, stakeholders, and cross-functional teams.
  • Ability to multitask, prioritize, and manage multiple projects in a fast-paced environment.
  • Strong  analytical and problem-solving skills, with the ability to debug and troubleshoot complex issues.
  • Commitment to continuous learning and staying current with emerging DevSecOps practices and tooling.
• Project & Process Ownership:
  • Drive continuous improvement in DevSecOps processes, ensuring alignment with organizational and compliance requirements.
  • Collaborate in agile ceremonies to refine tasks, estimate complexity, and deliver incremental value.
• Quality Assurance & Testing:
  • Implement  test-driven development, automated testing, and code reviews to ensure high code quality and reliability.
  • Track and address software vulnerabilities quickly through patching, remediation, and thorough documentation.
• Documentation & Reporting:
  • Document architectural decisions, implementation details, and operational guidelines.
  • Create  and maintain technical runbooks and user manuals, enabling knowledge sharing across the organization.
• Mentorship & Leadership:
  • Provide guidance and best practice recommendations to junior engineers.
  • Advocate for a culture of security and compliance across the development teams.
• Certifications:
  • IAT Level II or willingness to obtain within one year.