Senior DevSecOps Engineer

We are seeking a Senior DevSecOps Engineer to drive the hands-on hardening and secure implementation of multi-cloud systems in support of a mission-critical cybersecurity modernization effort. This role embeds security into every phase of the engineering lifecycle, as well as applying and implementing controls aligned with NIST 800-53, NIST 800-171, and CMMC. The ideal candidate is both a security expert and practitioner, skilled in hardening environments, reducing attack surfaces, and building automation that ensures our systems are secure, scalable, and reliable.

Key Responsibilities:

• Lead the hardening and secure implementation of multi-cloud systems (AWS, Azure, hybrid, and on-premise), embedding security into every phase of the engineering lifecycle.
• Apply and implement controls aligned with NIST SP 800-53, NIST SP 800-171, and CMMC requirements, including the practical enforcement of DISA STIGs and remediation of vulnerabilities.
• Design, build, and automate security tooling and repeatable deployment pipelines using Infrastructure as Code (Terraform), Configuration as Code (Ansible), and CI/CD practices.
• Conduct security assessments, architecture reviews, and boundary validation to reduce attack surfaces and ensure compliance with DoD cybersecurity directives.
• Implement and enforce identity, access, and network security guardrails across regulated cloud environments.
• Integrate monitoring, telemetry, and observability frameworks to support threat detection, performance tuning, and system resilience.

Required Qualifications:

• 5-10 years of hands-on experience in cybersecurity, systems security engineering, or DevSecOps roles supporting government or DoD programs.
• Active DoD Secret clearance or ability to obtain one.
• Expertise in NIST SP 800-53, NIST SP 800-171/CMMC, DISA STIGs, and the RMF process, with proven ability to implement, not just assess, security controls.
• Hands-on experience hardening and securing AWS and Azure environments, including identity, access, and network security enforcement.
• Proficiency with Infrastructure as Code (Terraform) and Configuration as Code (Ansible), along with experience building and maintaining CI/CD pipelines.
• Strong technical foundation in Linux (RHEL8 preferred) and Windows administration, container orchestration (Kubernetes, Docker), and secure image development.
• Proficiency in scripting languages (Python, Bash, PowerShell, Go) for automation and security tooling.
• Strong understanding of network security architecture (VPNs, firewalls, cross-domain solutions).
• DoD 8570 IAT Level II or III certification (e.g., CISSP, CASP+, Security+ CE), or obtain to obtain one within 90 days).

Preferred Qualifications:

• Advanced Kubernetes skills such as Certified Kubernetes Administrator (CKA) certification, writing custom Helm Charts, or experience with Rancher/OpenShift.
• Experience designing and implementing cloud-native secrets management solutions (e.g., HashiCorp Vault, AWS Secrets Manager).
• Experience obtaining or maintaining ATO for cloud-hosted systems in IL4/IL5 or FedRAMP environments.
• Experience with service mesh solutions (Istio, Linkerd, Consul) and container security tools (Aqua, Prisma Cloud, Trivy).

Why Work for Us?

Core4ce is a team of innovators, self-starters, and critical thinkers-driven by a shared mission to strengthen national security and advance warfighting outcomes.

We offer:

• 401(k) with 100% company match on the first 6% deferred, with immediate vesting
• Comprehensive medical, dental, and vision coverage-employee portion paid 100% by Core4ce
• Unlimited access to training and certifications, with no pre-set cap on eligible professional development
• Tuition assistance for job-related degrees and courses
• Paid parental leave, PTO that grows with tenure, and generous holiday schedules
• Got a big idea? At Core4ce, The Forge gives every employee the chance to propose bold innovations and help bring them to life with internal backing.

Join us to build a career that matters-supported by a company that invests in you.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), national origin, disability, veteran status, age, genetic information, or other legally protected status.