Staff DevSecOps Engineer

About Bluestaq
At Bluestaq, we're not just another tech company-we're a mission-driven team of innovators, problem-solvers, and trailblazers. Whether supporting space exploration, defense systems, global alliances, government initiatives, healthcare advancements, or commercial breakthroughs, our work spans industries that shape the future. Founded in 2018, Bluestaq has quickly become a leader in enterprise software and secure data management. Our name? A nod to our roots-"blue" (military shorthand for the good guys) and "staq" (as in software stack).

Recognized Excellence
We don't just talk about excellence-we deliver it. Bluestaq has earned national recognition as one of Inc. Magazine's Fastest-Growing Private Companies and is consistently ranked among Colorado's Best Workplaces. Whether we're supporting national security, enabling healthcare advancements, or driving commercial innovation, we're committed to building data management solutions that matter.

Join the Mission
Ready to push boundaries with tech that transforms industries? At Bluestaq, we engineer secure, scalable data ecosystems for space, defense, healthcare, and beyond. Join us to tackle mission-critical challenges, protect the world's most valuable data, and build what's next. Let's make extraordinary possible - together.

About the Team

The BlueStaq DevSecOps Team designs, builds, and maintains the tools and platform power the Unified Data Library (UDL). We are looking for highly collaborative and security-minded engineers who will bring significant expertise, experience, and energy to our mission of ensuring the secure, reliable, and continuous delivery of our foundational data platform. 
 
Why This Role Matters 

As a DevSecOps Engineer, you will play a crucial role in building and maintaining the platform and tooling that enables secure, efficient software delivery for the Unified Data Library. You'll work hands-on with Kubernetes orchestration, infrastructure as code, and CI/CD pipelines to create seamless developer experiences while serving as a vital link between application teams and production environments. 

Your responsibilities will include designing and implementing deployment processes, integrating security scanning tools into development workflows, and managing automation. You'll modernize applications while establishing best practices that balance security, reliability, and developer velocity. This role requires strong technical expertise and the ability to work independently—you'll own solutions from design through implementation and ongoing support, validating that implementations align with business requirements and advocating for best practices across teams. 

You'll be expected to comprehend how medium-level tasks contribute to overall goals and provide accurate time and effort estimates. This position demands strong problem-solving skills, the ability to develop components independently, and comfort with debugging systems and reading/writing code in complex enterprise environments. 
 
Key Responsibilities: 

• Design, build, and maintain production environments and CI/CD pipelines for the Unified Data Library 
• Serve as the bridge between application development teams and the platform, facilitating communication and advocating security best practices 
• Implement and maintain infrastructure as code using tools like Terraform 
• Build and support Kubernetes clusters and containerized applications 
• Integrate security automation, scanning tools, and monitoring into development workflows 
• Modernize applications using Helm, containers, and CNCF best practices 
• Establish and facilitate automated deployment processes and GitOps workflows 
• Collaborate with cross-functional teams to integrate various components into a cohesive platform 
• Validate solutions to maintain platform integrity and efficiency 
• Contribute to architectural discussions on secure, cloud-native implementations  

Required Qualifications & Skills:  

• Strong experience with cloud environments (AWS and/or Azure/GCP) 
• Expertise in infrastructure-as-code (Terraform or similar) 
• Hands-on experience with CI/CD pipelines, GitLab/GitHub, and continuous delivery automation 
• Proficient with YAML and configuration management 
• Familiarity with GitOps workflows, including git-based declarative configuration and automated reconciliation 
• Familiarity with Kubernetes and container orchestration 
• Strong problem-solving skills and ability to work independently 
• Excellent communication skills and ability to collaborate with development teams 
• Comfort with debugging systems and performance instrumentation in complex enterprise environments 
• Knowledge of DevSecOps/DevOps theory and best practices 

Preferred Qualifications & Skills: 

• Demonstrated proficiency with Kubernetes and container orchestration 
• Proficiency in at least one programming language (e.g., Python, Go) and shell scripting 
• Experience with HashiCorp Vault 
• Experience with security automation, including API Security, Container Security, and Cloud Security 
• Experience with CNCF projects, Helm, Kustomize, and GitOps practices 
• Hands-on experience with GitOps tools such as ArgoCD and/or Flux for continuous deployment 
• Experience implementing and managing ArgoCD Application/ApplicationSets or Flux Kustomizations and HelmReleases 
• Experience with Big Bang framework for deploying and managing cloud-native applications 
• Understanding of Big Bang's package structure, values management, and integration patterns 
• Knowledge of Iron Bank hardened container images and their integration within Big Bang 
• Experience working in Agile environments 
• Experience with security scanning tools and compliance requirements 
• Experience with Department of Defense ATO (Authority to Operate) systems 
• Experience with C-ATO (Continuous Authority to Operate) processes 
• DoD 8570 IAT II certification 
• Certified Kubernetes Administrator (CKA) 
• Certified Kubernetes Security Specialist (CKS) 
• HashiCorp Terraform Associate 
• HashiCorp Vault Associate 
• Cloud Native Certifications 

Required Education and Experience: 

• Master’s degree in Engineering, Computer Science, or a related field and 4 years of DevSecOps or related experience, OR 
• Bachelor’s degree in Engineering, Computer Science, or a related field and 6 years of DevSecOps or related experience, OR 
• Associate degree in a related field and 8 years of DevSecOps or related experience, OR 
• High School Diploma/GED and 10 years of DevSecOps or related experience. 

Clearance Requirement: This position requires the ability to obtain a TS/SCI Clearance. To be eligible for a security clearance, US Citizenship is required, and an employee must agree to participate in a background screen and credit check. Eligibility for a TS/SCI Clearance will be assessed as part of the onboarding process or based on programmatic needs.

Why Colorado Springs?

• Tech Talent Hotspot - Ranked #2 up-and-coming tech market in North America by CBRE (2024).
• Top Place to Live - Named #3 Best Place to Live in the U.S. and Most Desirable City overall by U.S. News (2024-25).
• Neighborly Spirit - Recognized as America's Most Neighborly City (2024) for community engagement and quality of life.
• Active Lifestyle Hub - Top 5 for hiking and fitness, blending outdoor recreation and wellness (2022).
• Pet-Friendly Leader - Ranked #1 Most Pet-Friendly City in the U.S. (2023) for furry, scaly, and feathery friends.
• Women's Workforce Haven - Ranked #6 Best City for Women in the Workforce by Checkr (2025), highlighting earning potential and female leadership opportunities.

With 300 days of sunshine and the Rocky Mountains as your backdrop, Colorado Springs offers the perfect mix of urban energy and outdoor adventure.

Relocation: This position does not offer relocation. Candidates must live in the immediate area or relocate at their own expense.

Why Join Us?

• Purpose-Driven Work: Support systems that power industries and critical operations, including healthcare and defense.
• Continuous Growth: Expand your technical expertise with hands-on projects and mentorship.
• Dynamic Environment: Be part of a team that thrives on problem-solving, learning, and collaboration.

Ready to make an impact? Apply today and help shape the future of data management in healthcare, defense, and beyond!

Physical Requirements:

• Prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 15 pounds at times.
• Must be able to access and navigate each department at the organization's facilities.

Bluestaq is an Equal Opportunity Employer. We prohibit unlawful discrimination against applicants or employees on the basis age 40 and over, color, disability, gender identity, genetic information, military or veteran status, national origin, race, religion, sex, sexual orientation, or any other status protected by state or local law.

Bluestaq will make reasonable accommodations for qualified individuals with known disabilities and employees whose work requirements interfere with a religious belief unless doing so would result in an undue hardship to Bluestaq or a direct threat. Employees needing such accommodation are instructed to contact Human Resources immediately at contact.us@bluestaq.com.

Date the Position Closes: Applications will be accepted for 60 days past the posting date, or until the position is filled, whichever comes first.