Senior DevSecOps Engineer

Company Description

Join Oteemo and become part of a transformation powerhouse where innovation meets impact. We're not just another consulting firm-we're architects of digital evolution, blending cutting-edge technical expertise with human-centered design principles to create solutions that resonate. Our work spans Infrastructure, Software Development, DevSecOps, Cybersecurity, Experience and Design, Organizational Change Management, and AI-enabled solutions, but our approach is what truly sets us apart. We measure success through tangible business outcomes, not billable hours. We foster a culture of continuous learning where your ideas can thrive and technical excellence is celebrated. Our collaborative global team works across borders and time zones, tackling complex challenges for both Commercial Enterprise and Federal Defense clients with equal passion and precision. At Oteemo, you'll have the opportunity to work with emerging technologies and develop your skills alongside industry experts who are reshaping digital landscapes. If you're seeking a place where your technical prowess can drive meaningful change and where innovation isn't just encouraged-it's expected-Oteemo is your next career destination.

Job Description

We are looking for a DevSecOps Engineer to stand up and maintain infrastructure and pipelines in both the cloud, and on-premise air-gapped environments. They should also have hands-on experience with at least one production distribution of Kubernetes, CI/CD Pipelines (above and beyond build pipelines), and with at least one cloud provider. Experience maintaining and upgrading infrastructure and Kubernetes clusters is desired. They should also be familiar with at least one pipeline orchestrator (Gitlab, Jenkins, Github). Experience with Python or another scripting language is also desirable. Must have some experience with Infrastructure as Code and automation.

Key Responsibilities:

• Architecture & Strategy: Design enterprise-scale DevSecOps and cloud-native architectures across AWS, Azure, GCP, and on-premise; define technical roadmaps; apply Zero Trust and defense-in-depth principles; lead architecture reviews and threat modeling.

• Platform & Infrastructure: Stand up and maintain secure infrastructure (cloud and on-premise air-gapped), including Kubernetes clusters and container platforms; oversee environment automation and reproducible provisioning.

• CI/CD & Pipelines: Architect and implement CI/CD and GitOps pipelines that integrate security scanning, compliance validation (RMF/NIST), automated testing, and continuous ATO/cATO workflows; design pipeline orchestration using tools such as GitLab CI, Jenkins, GitHub Actions, ArgoCD, and Flux.

• Infrastructure as Code (IaC) & Automation: Champion IaC and environment templatization (Terraform, Ansible, Kustomize, Helm, Jinja, etc.); automate provisioning, configuration management, and operational tasks.

• Security & Compliance: Integrate security controls into pipelines and platforms (secrets management, IAM, microsegmentation); ensure adherence to DoD security frameworks, RMF, and authorization processes; lead security architecture reviews.

• Operations & Upgrades: Maintain and upgrade production infrastructure and Kubernetes clusters; implement observability, monitoring, logging, and incident response practices.

Qualifications

• Clearance & Experience: Active Secret clearance or higher (TS/SCI preferred); experience on DoD or federal contracts and familiarity with DoD processes.

• Cloud & Platform Expertise: Hands-on multi-cloud experience (AWS, Azure, GCP) - strong experience in at least two providers; deep Kubernetes and containerization knowledge (EKS/GKE/OpenShift/RKE2/K3s).

• CI/CD & Tooling: At least 3+ year proven experience designing and operating CI/CD/GitOps pipelines and pipeline orchestrators (Jenkins, GitLab, GitHub Actions, ArgoCD, etc.).

• IaC & Automation: At least 3+ proficiency with Terraform, Ansible, or similar; scripting in Bash, Python, or Go.

• Security: Strong background in Zero Trust, IAM, network security (microsegmentation, VPN, load balancing), secrets management, and embedding security into pipelines.

• Operational Skills: Experience with platform operations, cluster lifecycle management, upgrades, and automation of routine tasks.

• Communication & Leadership: Strong written and verbal skills; demonstrated ability to lead and mentor teams and present to senior leadership.

Certifications (Required / Strongly Preferred):

• Cloud Platform: One or more from AWS (Solutions Architect Professional, DevOps Pro, Security Specialty), Azure (Solutions Architect Expert, DevOps Engineer Expert), or GCP (Professional Cloud Architect / DevOps / Security Engineer).

• Security: CISSP, CCSP, CEH, or GIAC (GSEC/GCIH) or Security+ CE.

• DoD/Federal: DoD 8140/8570 compliance (Security+ minimum; CISSP/CASP+ preferred).

• Kubernetes: CKA/CKAD, Terraform Associate, CNCF certifications.

Preferred Qualifications:

• Active Top Secret/SCI clearance.

• Experience with Navy, Marine Corps, or other service programs and Platform One / DoD Enterprise DevSecOps Reference Design.

• Familiarity with software factory concepts, continuous ATO (cATO), and classified environment automation.

• Familiarity with Agile/SAFe in government contexts.

• Hands-on coding experience (Python, Go, Bash).

• Experience with observability stacks (Prometheus, Fluentd, Loki, Grafana), service mesh (Istio, Envoy), and CNCF ecosystem tooling.

Work Conditions:

• Hybrid remote/onsite as required by contract (roles require presence in Greater Washington, D.C. area or specific program sites).

• Some travel may be required (up to 5 days per week depending on customer).

Additional Information

We Value:

• Drive: Passion and energy to implement quality technical solutions. Self-motivation and intellectual curiosity
• Commitment to Quality: Passion to conceive and produce world-class solutions that drive real-world value for the customer
• Customer Focus: Consultative approach to solving problems for customers. Expectations management.
• Communication: Superior communication skills. Ability to clearly articulate problems, solutions, risks, rewards etc. (written and verbal)
• Technical Skills: Love for technology. You have to be inherently passionate about technology.
• Business Acumen: Technology ultimately is used to enable the business. We look for people who understand how the businesses can be enabled through their technical solutions

What we offer:

• Ability to make a noticeable difference for the organization and our customers
• Tremendous growth opportunity by becoming part of a rapidly growing organization. It's not your tenure but what you can bring to the table that defines how your career will be shaped. You control your growth.
• Complex but interesting challenges to improve the depth and breadth of your technical and business skills. Our consultants are business technologists and understand how technology drives business.
• Competitive pay and benefits

Work authorization requirement: US Citizen.

Oteemo is an equal employment and affirmative action employer. We evaluate qualified applicants on merit and business needs and not on race, color, religion, creed, gender, sexual orientation, national origin, ancestry, age, disability, genetic information, marital status, veteran status or any other factor protected by law. Oteemo complies with the law regarding reasonable accommodations for handicapped and disabled employees.

It has come to our attention that unauthorized individuals may be impersonating our company or recruiters using fake email addresses or social media profiles to contact job seekers. These messages may offer fake job opportunities or request sensitive information under false pretenses.
Please be advised:

• All official communications from our company will come from email addresses ending in @oteemo.com.
• We do not ask for personal information such as your Social Security number, bank account details, or payment of any kind during the recruitment process.
• If you receive an email or message that seems suspicious, do not respond, click on any links, or provide any information.
• You can verify the legitimacy of any communication by contacting us directly through our official website or LinkedIn page.

We take these matters seriously and are committed to protecting the integrity of our recruitment process.