Sr. IT DevSecOps Engineer

Sr. IT DevSecOps Engineer

Onsite in Washington DC

Position Description:

The DevSecOps Engineer will play a crucial role in our organizations initiative to develop and deploy a new cloud-native application in the AWS GovCloud environment. This position requires a highly skilled professional who can integrate development security and operations practices while navigating the unique challenges of government cloud infrastructure.

The ideal candidate will have a strong background in cloud technologies particularly AWS GovCloud and a deep understanding of security principles and compliance requirements in government IT environments. They will be responsible for designing implementing and maintaining secure scalable and efficient cloud infrastructure for multiple environments (e.g. development testing staging production) of the new application.

This role requires a proactive approach to identifying and mitigating security risks automating processes and fostering a culture of continuous improvement and collaboration across teams. The DevSecOps Engineer will be instrumental in establishing best practices for cloud-native application development enhancing our security posture and enabling agile and efficient operations.

Key Responsibilities:

• Design and implement cloud infrastructure for multiple environments of the new application
• Establish and maintain security best practices throughout the development lifecycle
• Develop and manage Infrastructure as Code (IaC) for cloud resources
• Design and implement CI/CD pipelines with integrated security measures
• Set up comprehensive monitoring logging and alerting systems
• Ensure compliance with relevant government regulations and standards
• Optimize performance of the application across all environments
• Provide training and knowledge transfer to development and operations teams
• Develop and implement disaster recovery and business continuity plans
• Drive continuous improvement in cloud operations and security practices

Work Experience:

• Cloud-Native Application Development:
  • Minimum of 5 years of experience in DevOps or cloud engineering roles
  • Demonstrated experience in developing and deploying cloud-native applications
  • Track record of implementing and maintaining secure CI/CD pipelines

• AWS Expertise:
  • At least 3 years of hands-on experience with AWS services
  • Minimum 1 year of experience specifically with AWS GovCloud

• Security and Compliance:
  • Experience implementing security best practices in cloud environments
  • Familiarity with government compliance standards (e.g. FedRAMP FISMA)
• Multi-Environment Management:
  • Experience in setting up and managing multiple environments (dev test staging prod)
• Team Collaboration:
  • History of collaboration with cross-functional teams to deliver complex IT projects leveraging Agile values and principles

Technical Skills:

• Bachelors degree in computer science information technology or related field and six years of experience
• Proficiency in AWS services particularly within the GovCloud environment
• Strong understanding of cloud security principles and best practices
• Expertise in Infrastructure as Code tools (e.g. Terraform)
• Proficiency in scripting languages (e.g. Python Bash)
• Experience with CI/CD tools and methodologies (e.g. GitLab)
• Knowledge of containerization technologies (e.g. Docker Kubernetes ECS)
• Familiarity with monitoring and logging solutions (e.g. AWS CloudWatch)
• Understanding of networking concepts and implementation in cloud environments
• Experience with identity and access management in cloud settings
• Proficiency in version control systems (e.g. Git)
• Experience with testing frameworks (e.g. unit testing automated testing)
• XACTA 360 is a plus
• SPLUNK is a plus
• Experience working with Federal Agencies and with the NIST 800.53 FISMA standard and process is a plus