DevSecOps Engineer

Position Summary

MAG is recruiting for a DevSecOps Engineer who will e nable rapid, secure delivery of tactical capabilities through world-class automation. You'll build the infrastructure and pipelines that allow a small team to deliver like a large organization while maintaining security in contested environments.

This is a Hybrid Position - Remote mainly - but as well on call to come into a MAG office when requested.

We are seeking candidates who live in proximity to our corporate HQ in Fairfax, VA primarily but will entertain persons living near our satellite offices in:
Aberdeen, MD - Titusville, FL - Newport News, VA - Carthage NC

Essential Duties and Responsibilities

Duties include, but not limited to:
Primary Responsibilities

• Design and implement CI/CD pipelines for multi-architecture deployments
• Develop Infrastructure as Code (IaC) for hybrid cloud/edge environments
• Implement container orchestration for resource-constrained platforms
• Create automated testing frameworks (unit, integration, security, performance)
• Build observability solutions (metrics, logging, tracing, profiling)
• Develop GitOps workflows for configuration management
• Optimize build processes for embedded and edge platforms

Secondary Responsibilities

• Implement security scanning in CI/CD pipelines (SAST, DAST, dependency scanning)
• Automate compliance validation (STIG, RMF controls)
• Design and implement secrets management solutions
• Create security monitoring and incident response automation
• Support security documentation and authorization packages

Requirements

Minimum Requirements:

Primary Experience / Qualifications:

• 5+ years DevOps/DevSecOps experience
• Expert-level knowledge of CI/CD platforms (Azure DevOps, GitLab CI, Jenkins)
• Experience with artifact repositories (e.g., JFrog Artifactory, Sonatype Nexus, Azure Artifacts, to include Azure Container Registry) for managing diverse package types
• Strong scripting skills (Python, Bash, PowerShell)
• Extensive experience with containerization (Docker, Podman) and orchestration (Kubernetes)
• Proficiency with IaC tools (Terraform, Ansible, Pulumi)
• Experience with cloud platforms (Azure required, AWS/GCP beneficial)
• Understanding of security scanning tools and practices
• Experience with monitoring stacks (Prometheus, Grafana, ELK)
• Knowledge of Git workflows and version control best practices

Preferred Qualifications

• Experience with embedded system CI/CD and cross-compilation
• Knowledge of military software development processes
• Familiarity with RMF and security authorization processes
• Experience with air-gapped and classified environments
• Understanding of supply chain security and SBOM
• Kubernetes certifications (CKA, CKS)
• Experience with chaos engineering and resilience testingFamiliarity with Policy-as-Code (PaC) tools like Open Policy Agent (OPA) for automating governance and security checks

Education & Experience:

• Bachelor's degree in CS, EE, or related field;
• Master's preferred

Clearance:

• Must be eligible for Secret security clearance
• Must be a US citizen

Special Note

What Makes You Successful Here

• You automate everything that can be automated
• You treat infrastructure as code, not clickops
• You build security into pipelines, not bolt it on after
• You can work across cloud, on-prem, and edge environments
• You measure success by how little manual work the team does

Why Join MAG:

• Work on meaningful problems that directly impact national security
• Small, elite team where your contributions matter immediately
• Access to cutting-edge hardware and technologies
• Rapid prototyping environment - see your ideas deployed in weeks
• Direct interaction with end users and field deployments
• Professional development and conference attendance support
• Flexible work arrangements with occasional field exercises
• Opportunity to shape the future of tactical edge computing