Mid-Level DevSecOps Engineer

Job Title: Mid-Level DevSecOps Engineer

Location: Washington DC (Hybrid Remote with occasional onsite support as needed)

Duration: Upto 5 Years

Position Overview

We are seeking a Mid-Level DevSecOps Engineer to support enterprise cloud and hybrid infrastructure modernization initiatives. The ideal candidate will have hands-on experience with Infrastructure as Code (IaC) CI/CD automation container orchestration cloud platforms and security integration. This role will focus on enhancing existing DevSecOps capabilities automating infrastructure deployments and embedding security throughout the software development lifecycle.

Key Responsibilities

Develop maintain and optimize Infrastructure as Code (IaC) using Terraform and/or OpenTofu.

Create and manage Ansible playbooks and automation workflows for configuration management and compliance.

Design implement and support CI/CD pipelines using GitHub Actions.

Build manage and secure Docker containers and Kubernetes environments.

Integrate security controls into CI/CD pipelines including SAST DAST secrets scanning and policy-as-code validation.

Support AWS cloud infrastructure deployments and automation initiatives.

Implement container and infrastructure hardening in alignment with security best practices.

Participate in sprint planning code reviews troubleshooting and technical documentation activities.

Collaborate with engineering cloud and security teams to improve automation and operational efficiency.

Required Qualifications

• Bachelors degree in Computer Science Information Systems Engineering or a related field (or equivalent experience).
• Minimum 5 years of IT experience.
• Minimum 3 years of hands-on DevSecOps experience.
• Experience implementing security scanning tools and Policy-as-Code frameworks.
• Strong experience with Terraform and/or OpenTofu.
• Hands-on experience with Ansible automation.
• Experience designing and maintaining GitHub Actions workflows.
• Proven CI/CD pipeline implementation experience.
• Experience with Docker and Kubernetes.
• Strong scripting skills using Python and Bash.
• Experience supporting AWS environments.
• Hands-on experience with SAST DAST security scanning tools and Policy-as-Code frameworks.
• Strong understanding of Git-based version control and code review processes.

Preferred Qualifications

• Experience working in federal government or highly regulated environments.
• Knowledge of NIST FISMA FedRAMP or similar compliance frameworks.
• Experience with Secure SDLC practices.
• Familiarity with secrets management solutions such as HashiCorp Vault.
• Experience implementing CIS security benchmarks.
• AWS Certified Solutions Architect
• AWS Certified DevOps Engineer
• Certified Kubernetes Administrator (CKA)
• Terraform Certification

Success Profile

• Candidates should demonstrate proven experience with infrastructure automation CI/CD implementation container orchestration and integrating security throughout the software development lifecycle.