Senior DevSecOps Engineer

About Our Team 

Our employees thrive in a culture that is fast-paced, collaborative, and ego-free, where innovation and teamwork are encouraged at every level. We provide Federal agencies with immediate access to highly skilled professionals who understand complex mission challenges and deliver efficient, scalable solutions. By continuously investing in talent, technology, and specialized capabilities, we maintain expert teams prepared to support evolving Federal missions through tailored technical solutions and modern service delivery approaches. 

We value diverse perspectives and strive to attract talent from all backgrounds. We are seeking professionals who are passionate about technology, mission success, and solving complex operational challenges with creativity and purpose. If you enjoy expanding your technical expertise while supporting impactful Federal initiatives, you will thrive within our organization. Veterans and military spouses are strongly encouraged to apply and bring their valuable experience to our team. 

About the Role 

We are seeking a Senior DevSecOps Engineer to serve as a hands-on technical lead responsible for implementing and maturing DevSecOps and observability practices for a cloud-native, event-driven platform on AWS. This role will support CI/CD, infrastructure automation, and platform reliability for Kafka/MSK-based event streaming, RPC-driven services, and real-time WebSocket applications. 

Responsibilities 

• Design, implement, and maintain CI/CD pipelines using Jenkins and Bitbucket for automated build, test, and deployment workflows. 
• Develop and manage Infrastructure as Code (IaC) using Terraform and Packer for AWS-based environments. 
• Deploy and manage containerized applications using Docker and Kubernetes. 
• Implement and maintain observability solutions using Prometheus, Grafana, Elasticsearch, and Kibana. 
• Support security practices including secrets management (Vault), IAM policies, and secure configuration management. 
• Integrate security scanning tools and practices into CI/CD pipelines (e.g., code, container, and dependency scanning). 
• Support Kafka/MSK infrastructure through automation, monitoring, and operational tooling. 
• Implement logging, monitoring, and alerting strategies to support platform reliability and performance. 
• Collaborate with cloud engineers and developers to embed DevSecOps best practices into development workflows. 
• Support deployment and scaling of real-time streaming platforms, including WebSocket-enabled services. 
• Automate environment provisioning, configuration management, and release processes. 
• Support system resilience through monitoring, incident analysis, and continuous improvement practices. 
• Provide technical leadership for DevSecOps strategy, tooling selection, and pipeline architecture. 
• Establish standards for CI/CD, IaC, and security integration across the platform. 
• Drive improvements in system reliability, scalability, and performance monitoring. 
• Mentor junior engineers and promote DevSecOps culture and best practices across teams. 
• Identify and mitigate risks related to deployment, security, and system availability. 

TAG: #LI-I4DM

TAG: INDMJC

Qualifications 

• 8+ years of experience in DevSecOps, cloud engineering, or related roles. 
• Strong experience with AWS cloud platforms and services. 
• Experience building and maintaining CI/CD pipelines using Jenkins or similar tools. 
• Experience with Infrastructure as Code (Terraform) and container orchestration (Kubernetes). 
• Experience with monitoring and observability tools (Prometheus, Grafana, ELK stack). 
• Familiarity with security best practices, including secrets management and secure pipeline design. 
• Experience supporting distributed systems and event-driven architecture. 
• Ability to lead technical initiatives and mentor team members. 
• Eligible to obtain and maintain a Public Trust clearance. 
• Preferred Qualifications 
• Experience working in VA or Federal environments. 
• Experience supporting Kafka or event-driven architecture. 
• Experience with Vault, Consul, Nexus, or similar enterprise tooling. 
• Experience supporting real-time streaming or WebSocket-based systems.