Senior Cloud Solution Engineer

MTSI is seeking a Senior Cloud & DevSecOps Engineer to join our team at the Missile Defense Agency in Colorado Springs, CO. This role will help a team accelerate the delivery of secure software capabilities to the warfighter. In this critical role, you will architect mission workloads and build the automated DevSecOps pipelines required to deploy them across Impact Level 5 and 6 (IL5/IL6) environments.

You will lead the modernization of legacy defense applications, designing cloud-native architectures targeted for AWS GovCloud, Azure Government, and high-side on-premise VMware vSphere data centers. Your primary objective is to implement a "secure by design" software factory that supports Continuous Authority to Operate (cATO) pathways, ensuring that mission-critical code is deployed rapidly, securely, and in strict compliance with DoW cybersecurity mandates.

Core Responsibilities

• Analyze legacy DoW application portfolios and design target-state architectures for IL5/IL6 environments. Re-platform workloads using hardened containers (e.g., DoD Iron Bank) and Kubernetes, or re-architect for cloud-native services to enhance mission resilience.
• Architect and implement end-to-end CI/CD pipelines aligned with the DoD Enterprise DevSecOps Reference Design. Build the automation framework necessary to support a Continuous Authority to Operate (cATO), integrating source control, build automation, and deployment strategies.
• Embed automated security controls directly into the pipeline. Implement SAST/DAST/SCA scanning, automated DISA STIG compliance checks, and Open Policy Agent (OPA) guardrails to ensure all deployments meet Risk Management Framework (RMF) requirements prior to release.
• Develop and enforce modular IaC templates (AWS CloudFormation, Azure ARM, Terraform) to define and provision hybrid mission environments. Ensure all infrastructure deployments are version-controlled, repeatable, and peer-reviewed.
• Provide technical leadership for transitioning workloads from legacy on-premise SIPR/NIPR environments to AWS GovCloud/Secret and Azure Government. Design the automation to execute migrations with zero mission degradation.

Required Qualifications

• Security Clearance: Must possess an active DoD Secret or Top Secret clearance. (TS/SCI preferred).
• DoD Certification: Must meet DoD 8140/8570 IASAE Level II or III requirements (e.g., CISSP, CASP+, or CISSP-ISSEP).
• Experience: 8-10 years in IT infrastructure or software engineering, with at least 5 years architecting cloud workloads or building DevSecOps pipelines in federal/DoD environments.
• Hybrid Cloud Expertise: Proven, hands-on experience designing architectures that span AWS GovCloud, Azure Government, and on-premise VMware vSphere environments (vCenter, ESXi, NSX).
• DevSecOps Tooling: Deep practical knowledge of containerization (Docker/Kubernetes), CI/CD orchestration (e.g., GitLab CI, Jenkins), and integrating security scanners (e.g., SonarQube, Fortify, Twistlock).
• IaC Mastery: Extensive experience with AWS CloudFormation and/or Terraform for deploying infrastructure in highly regulated environments.

Preferred Qualifications

• AWS Certified DevOps Engineer - Professional, Azure DevOps Engineer Expert, or CKA (Certified Kubernetes Administrator).
• Strong proficiency in Python, Bash, Typescript, or PowerShell for building complex automation and pipeline glue logic.
• Bachelor's or Master's degree in Computer Science, Software Engineering, Cybersecurity, or a related technical discipline.

The pay range for this position in Colorado is $160,000/year to $200,000/year; however, base pay offered may vary depending on established government contract ranges, job-related knowledge, skills, and experience, and other factors. MTSI also offers a full range of medical, financial, and other benefits, dependent on the position offered. Base pay information is based on market location. Applications will be accepted on an ongoing basis. This posting will be renewed periodically until the position is filled.

#LI-AS1