Today
Top Secret
Unspecified
Unspecified
Engineering - Systems
Washington, DC (On-Site/Office)
OVERVIEW:
We are seeking a DevOps Engineer - Mid-Level to design, deploy, test, certify, operate, and patch our DevSecOps toolchain and platforms. You'll build secure CI/CD services on IaaS, manage Linux-based systems for dynamic apps, automate with scripting, and keep environments healthy with open-source monitoring. The role also serves as the primary O&M owner for multiple tools, resolving interoperability issues across operating systems, libraries, and dependencies.
GENERAL DUTIES:
REQUIRED QUALIFCATIONS:
DESIRED QUALIFICATIONS:
CLEARANCE:
We are seeking a DevOps Engineer - Mid-Level to design, deploy, test, certify, operate, and patch our DevSecOps toolchain and platforms. You'll build secure CI/CD services on IaaS, manage Linux-based systems for dynamic apps, automate with scripting, and keep environments healthy with open-source monitoring. The role also serves as the primary O&M owner for multiple tools, resolving interoperability issues across operating systems, libraries, and dependencies.
GENERAL DUTIES:
- Build, maintain, and harden CI/CD pipelines for application and infrastructure delivery.
- Deploy and configure services on IaaS providers (e.g., AWS/Azure/GovCloud).
- Configure and administer Linux servers supporting dynamic websites and APIs.
- Debug and optimize cluster-based architectures (containers/orchestration, distributed systems).
- Patch systems, upgrade tools, and remediate interoperability and dependency issues.
- Document runbooks, standards, and architecture patterns for repeatable operation.
REQUIRED QUALIFCATIONS:
- Minimum of 4 years experience with a Bachelor's degree in Computer Science, Information Systems, or related field.
- Proven ability to integrate security practices, tools, and controls across the full DevOps pipeline (development, testing, deployment, and operations).
- Hands-on experience automating security testing, scanning, and compliance checks throughout the SDLC.
- Demonstrated practice implementing automated security controls, including static code analysis (SAST), dynamic application security testing (DAST), container image scanning, and vulnerability assessment.
- Experience establishing and operating continuous monitoring for application and infrastructure security (alerts, dashboards, telemetry, and remediation workflows).
DESIRED QUALIFICATIONS:
- Infrastructure as Code (Terraform/CloudFormation), configuration management (Ansible/Chef/Puppet).
- Cloud/IaaS experience (AWS/Azure), including networking, IAM, and cost/rightsizing awareness.
- Knowledge of compliance frameworks (e.g., NIST, CIS Benchmarks) and secure baselining.
- Experience with artifact repositories, secrets management, and SBOM/signing (e.g., Cosign).
- Certifications (e.g., AWS/Azure associate-level, Security+, Linux+, CKA/CKAD) or equivalent proven work
CLEARANCE:
- Top Secret security clearance with SCI eligibility
group id: 90943786
