DevSecOps Engineer (Journeyman)

Role Overview

DevSecOps Engineer (Journeyman) supporting the MODES III program for Military Community and Family Policy (MC&FP). The role involves implementing, maintaining, and securing CI/CD pipelines, infrastructure automation, and deployment tooling, with DevSecOps practices embedded into development lifecycles. Remote with an active Secret clearance required.

Responsibilities

• CI/CD & Release Security: Implement and operate CI/CD pipelines (Jenkins, GitLab CI, CodeBuild/CodePipeline) with:
  • Automated unit/integration tests
  • Static/dynamic security scanning (SAST/DAST)
  • Secure artifact promotion gates for repeatable releases
• Infrastructure as Code (IaC): Create and manage IaC templates (Terraform/CloudFormation) and automate environment provisioning for dev/test/pre-prod/prod, aligned with DoD CC SRG requirements.
• Containers & Orchestration: Containerize apps and support orchestration using Docker and Kubernetes (EKS/ECS); automate deployments, health checks, rollbacks, and canary/cutover strategies.
• Security Integration / RMF/ATO: Embed security into pipelines via hardening (STIG/SRG), vulnerability scanning (e.g., ACAS/NESSUS/SCAP), secrets management, and coordinate remediation workflows with security/CCM teams to support RMF/ATO artifact capture.
• Observability: Configure centralized logging/metrics/alerting using CloudWatch, Splunk, ELK, and feed pipeline/service health into MODES III dashboards for near real-time monitoring.
• Backup/DR Automation: Implement snapshot/backup/recovery orchestration, support COOP/DR exercises, and validate recovery playbooks.
• Collaboration & Mentoring: Work with developers, QA, DBAs, and cloud architects to codify deployment patterns and reduce change lead time; mentor junior engineers on secure automation practices.

Required Qualifications

• Active Secret clearance
• 5 years relevant experience with a BS/BA, or 3 years with an MS/MA, or 1 year with a PhD, or equivalent experience per degree/qualification rules.
• Must meet DoD 8140 Foundational Qualification standards via an approved industry certification (e.g., A+, Network+) or documented equivalent training.

Nice-to-haves / Familiar With

Experience with: Terraform, CloudFormation, Ansible, Jenkins, GitLab CI, Tekton, CodePipeline, XLRelease, Docker, Kubernetes (EKS)/OpenShift, Helm, Trivy, SonarQube, Checkmarx, Tenable/ACAS, Splunk, CloudWatch, Prometheus, Grafana, ELK/OpenSearch, Artifactory/Quay/Nexus, Python/Bash/PowerShell.