xelys jobs xelys jobs

DevSecOps Engineer

TCG

hybridseniorfixed-termdevopssecurity Washington, DC Today via LinkedIn

See how well this job matches your profile

Sign up to get an AI match score and generate a tailored application in seconds.

Get your match score

Tags

DevSecOpsAWSCI/CDGitLabKubernetesDockerTerraformCloudFormationSonarQubeSAST/DAST

About the role

Role Overview

TCG is seeking a DevSecOps Engineer to design, develop, and implement solutions for a Federal government customer. This is a full-time, short-term position with a target start and duration through September 2026, with possible extension. The role is primarily remote, but the candidate must live within commuting distance of Washington, D.C. and be able to work on-site occasionally. U.S. citizenship and a favorable government background investigation adjudication are required.

Responsibilities

  • Design, develop, and maintain CI/CD pipelines in AWS, using tools such as GitLab
  • Deploy and manage containerized applications using Kubernetes and Docker in AWS
  • Configure and maintain AWS environments, including baselines and security policies
  • Apply security best practices across the DevSecOps lifecycle (e.g., vulnerability management and secure configuration)
  • Integrate SAST/DAST tools into CI/CD, including SonarQube and Invicti
  • Ensure container security in Kubernetes and AWS environments
  • Collaborate with development teams to remediate vulnerabilities reported by tools like Tenable and track resolution progress
  • Automate deployment and configuration management across dev/test/prod using Ansible
  • Implement and maintain monitoring and logging solutions (e.g., Splunk or ELK Stack)
  • Support platform operations: updates, patching, and maintenance for AWS infrastructure
  • Review and recommend improvements to cloud architecture to support scaling

Requirements

  • 5+ years of DevSecOps engineering experience
  • 3+ years managing and maintaining AWS ecosystems
  • Expertise deploying containerized applications with Kubernetes and Docker
  • Proficiency in AWS security (baselines/security policies) to support a Zero Trust approach (e.g., encrypted S3, IAM roles, service/network logging)
  • Proficiency designing and maintaining CI/CD pipelines with GitLab
  • Experience using Terraform or CloudFormation for Infrastructure as Code
  • Hands-on security scanning and vulnerability management experience with SAST/DAST tools (e.g., SonarQube, Invicti) and Tenable
  • Ability to work in an Agile/iterative environment
  • Experience authoring and debugging Dockerfiles (preferably for images using Java or Angular)
  • Experience standing up and managing an AWS/GitLab architecture, preferably in non-DOD federal settings

Preferred Skills

  • DevSecOps-relevant cloud certifications (AWS preferred)
  • Experience securing Java Spring Boot API containers
  • Experience working with regulatory/legal/government data sets

Education

  • Bachelor’s degree in Information Systems, Computer Engineering, Computer Science, or a related discipline

About TCG

TCG is an award-winning IT solutions provider focused on delivering services to the Federal government. The company positions itself as a B Corp, emphasizing responsible practices toward employees and the community while remaining profitable.

View original listing Generate application

Scraped 4/10/2026

xelys jobs xelys jobs

Built for remote job seekers. Powered by AI.