Job Requirements
Washington, DC
Top Secret Polygraph Unspecified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries
Job Description
Job Description
Senior DevSecOps Engineer
We are seeking an experienced Senior DevSecOps Engineer who will work as part of a collaborative and high-performing team providing expertise to ensure integration of security best practices throughout the development and operations lifecycles.
HOW YOU WILL MAKE AN IMPACT
WHAT YOU'LL NEED TO SUCCEED
Senior DevSecOps Engineer
We are seeking an experienced Senior DevSecOps Engineer who will work as part of a collaborative and high-performing team providing expertise to ensure integration of security best practices throughout the development and operations lifecycles.
HOW YOU WILL MAKE AN IMPACT
- Design, build, and maintain secure, automated CI/CD pipelines to support application development and operations.
- Implement and enforce security best practices, including secure configuration, dependency management, and deployment patterns.
- Ensure end-to-end integration of security throughout the SDLC, including build, test, deploy, and runtime operations.
- Design, deploy, operate, and maintain enterprise development security platforms, secure or vetted package management solutions, and SecOps CI/CD solutions.
- Collaborate with development, security, and operations teams to embed security controls into pipelines, tooling, and workflows.
- Provide advanced technical guidance and mentoring to development teams on secure coding practices, threat modeling, and vulnerability remediation.
- Strengthen the overall application security posture by identifying risks, recommending solutions, and driving adoption of security standards and patterns.
- Lead and participate in security-focused reviews, including design reviews, code reviews, and pipeline security assessments.
WHAT YOU'LL NEED TO SUCCEED
- Active Top Secret security clearance with SCI eligibility.
- Bachelor's degree in a technology discipline (e.g., Computer Science, Information Technology, Engineering) and a minimum of 5 years of relevant experience; relevant experience may be substituted for education.
- Strong, hands-on experience in the design, deployment, operations, and maintenance of:
- Enterprise development security platforms.
- Secure or vetted package management solutions.
- SecOps CI/CD solutions supporting applications in hybrid environments, across multiple classification levels.
- Significant hands-on experience in DevOps/DevSecOps engineering supporting enterprise applications.
- Strong understanding and practical experience with:
- CI/CD tools and pipelines.
- Application security principles, secure coding practices, and common vulnerability types (e.g., OWASP Top 10).
- Security integration in SDLC/CI-CD pipelines, dependency scanning, container scanning, and secrets management.
- DoD 8140 IAT II compliant certification.
- Proven ability to mentor and influence development teams on secure engineering practices.
- Strong problem-solving skills and the ability to design scalable, reliable, and secure automation solutions.
- Exceptional communication skills and the ability to build trusted relationships with technical and non-technical stakeholders.
group id: 90979310