Integration and DevSecOps Engineer

The Integration and DevSecOps Engineer supports the integration of the Fangorn prototype into a cohesive, secure, and cloud-native system while helping build and maintain the underlying hybrid infrastructure. This role focuses on system integration, Kubernetes-based platforms, and DevSecOps practices, working closely with senior engineers, architects, and security stakeholders.

The engineer will help implement and maintain the "plumbing" of the solution-network connectivity, system interfaces, CI/CD pipelines, and containerized workloads-ensuring infrastructure is automated, secure, and maintainable through code. This role is well-suited for an engineer with foundational experience who is ready to deepen hands-on expertise in Kubernetes, DevSecOps, and hybrid cloud environments.

Job Duties and Responsibilities:

Hybrid Connectivity & Infrastructure

• Support secure network connectivity between on-premise (mainframe) environments and cloud infrastructure (AWS, Azure, or private cloud).
• Assist with configuration of VPCs/VNets, subnets, routing, VPNs, and security groups under guidance from senior engineers.
• Help ensure reliable, secure data transfer between mainframe and cloud components.

System Integration

• Implement and maintain integration points between mainframe systems and cloud-based services.
• Support API-based integrations, messaging systems (e.g., IBM MQ or cloud-native messaging), and scheduled data transfers.
• Assist with data format transformations and integration troubleshooting (e.g., EBCDIC to ASCII).

Kubernetes & Container Platforms

• Deploy, configure, and support Kubernetes-based workloads (EKS, AKS, OpenShift, or similar).
• Manage containerized applications using Docker and Kubernetes primitives such as deployments, services, ingress, and namespaces.
• Assist with Kubernetes troubleshooting, upgrades, and configuration changes.
• Apply Kubernetes security best practices, including RBAC, secrets management, image scanning, and network policies.

DevSecOps & Automation

• Contribute to DevSecOps pipelines by integrating infrastructure provisioning, application deployment, and security controls into CI/CD workflows.
• Maintain and enhance Infrastructure as Code (IaC) using tools such as Terraform, CloudFormation, or Azure Resource Manager.
• Implement and support security automation including vulnerability scanning, container image scanning, secrets management, and compliance checks.
• Work with DevOps and Security leads to align deployments with DoD security requirements and STIG guidance.

Deployment, Testing & Troubleshooting

• Support deployment and configuration of middleware, databases, message queues, and supporting services.
• Participate in integration and end-to-end testing across hybrid workflows.
• Troubleshoot cross-system issues involving networking, Kubernetes, CI/CD pipelines, or data integration.
• Use logging and monitoring tools to assist in identifying and resolving system issues.

Environment & Platform Operations

• Support development, test, and prototype environments.
• Monitor system health, performance, and resource usage.
• Assist with backup, recovery, and basic cost-optimization activities.

Documentation & Knowledge Transfer

• Maintain documentation for infrastructure configurations, Kubernetes deployments, and integration workflows.
• Contribute to operational runbooks and support guides.
• Assist with knowledge transfer to sustainment or operations teams as the prototype matures.

Job Requirements (Education/Skills/Experience):

Required

• U.S. Citizenship required; ability to obtain a Secret clearance (active Secret preferred).
• 3+ years of hands-on DevSecOps experience, including CI/CD pipelines, infrastructure automation, and security integration.
• 3-5 years of experience in cloud engineering, DevOps, systems integration, or related technical roles.
• Hands-on experience deploying and supporting Kubernetes workloads.
• Experience with at least one cloud platform (AWS, Azure, or private cloud).
• Experience with Infrastructure as Code tools (Terraform, CloudFormation, or ARM).
• Working knowledge of Linux systems and scripting (Bash, Python, or PowerShell).
• Familiarity with networking fundamentals (TCP/IP, DNS, VPNs, routing, firewall concepts).
• Bachelor's degree in Information Technology, Computer Science, Engineering, or equivalent practical experience.

Preferred

• Experience in DoD or DISA IT environments.
• Familiarity with STIGs, compliance-driven environments, or security hardening.
• Experience integrating security tooling into CI/CD pipelines.
• Exposure to monitoring and logging tools such as Splunk, CloudWatch, Prometheus, or similar.
• Cloud certifications (AWS or Azure associate-level).
• Strong documentation and communication skills.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.