DevSecOps Engineer

Mid-LevelDevSecOpsEngineer

Position Summary

KeenLogicis seeking aMid-LevelDevSecOpsEngineerto support the Congressional Budget Office (CBO) by designing automating securing andmaintainingcloud and hybrid infrastructure environments. The engineer willleverageInfrastructure as Code (Terraform/OpenTofu) Configuration as Code (Ansible) CI/CD automation (GitHub Actions) container technologies (Docker/Kubernetes) andDevSecOpsbest practices to support secure reliable and scalable technology operations while ensuring compliance with CBO engineering and cybersecurity standards.

Work is primarily performed remotely; however contractor personnel must be available to provide onsite support at the CBO Ford House Office Building in Washington DC as directed by the Fortune 500-level benefits including health dental and vision insurance PTO 401(k) and life insurance.

Required Qualifications

• US citizen and eligible for a Public Trust clearance

• Bachelors degree in Information Technology Computer Science Cybersecurity or related discipline (or equivalent experience)

• 5 years ofDevSecOps Cloud Engineering or Infrastructure Automation experience

• Hands-on experience with:

• Terraform/OpenTofu

• Ansible

• GitHub Actions

• Docker

• Kubernetes

• Git-based development workflows

• Experience integrating:

• SAST tools

• DAST tools

• Secrets scanning

• Policy-as-code frameworks

• Experience supporting AWS cloud environments.

• Strong scripting experience in Python and/or Bash.

• Experience supporting federal security frameworks and compliance requirements.

Key Responsibilities:

Infrastructure as Code (Terraform/OpenTofu)

• Maintain and enhance existing Terraform andOpenTofuenvironments

• Develop reusable infrastructure modules

• Manage state files and remote backends

• Execute infrastructure deployments through approved change control processes

• Refactor legacy infrastructure code to current standards

Configuration Management (Ansible)

• Develop andmaintainAnsible playbooks and roles

• Automate server configuration and application deployment

• Support patch management and compliance enforcement

• Maintain inventory and configuration documentation

CI/CD Engineering (GitHub Actions)

• Develop andmaintainGitHub Actions workflows

• Automate build test security scanning and deployment processes

• Implement SAST dependency scanning secrets detection and policy-as-code controls

• Support code review and release management processes

Containerization & Kubernetes

• Develop and maintainDockerfiles

• Support Kubernetes deployments and orchestration

• Manage manifests Helm charts namespaces and RBAC configurations

• Perform container vulnerability scanning and remediation

• Support cluster monitoring and troubleshooting

Security & Compliance

• Integrate security controls throughout CI/CD pipelines

• Support vulnerability management and remediation efforts

• Assistwith compliance audit and security assessment activities

• Maintain technical documentation and operational runbooks