Mid Level DevSecOps Engineer

We are looking for a Mid-Level DevSecOps Engineer to build, and enhance the automation technologies that power a critical mission planning system for our government customer. This role is important to ensure secure, reliable, and scalable automated delivery of infrastructure and applications.

This position will require at least two days per week of work on-premise at Scott AFB.

What you will do:

• Infrastructure Automation: Implement and extend Infrastructure-as-Code (IaC) to support consistent, repeatable, and secure environments across development, testing, and production.
  
• Build and Evolve CI/CD Pipelines: Develop and maintain automated Continuous Integration / Continuous Delivery (CI/CD) pipelines for rapid, secure, and error free deployments with no disruption in service to mission partners.
  
• Implement DevSecOps Best Practices: Integrate security controls, compliance requirements, automated testing, and observability directly into build and deployment workflows.
  
• Security: Implement security mitigations from ACAS findings, STIG Guidelines, CIS Benchmarks, Zero Trust requirements, and other security standards as required by the program
  
• Collaborate: Work closely with development, testing, security, and scrum masters to plan and execute IaC in response to business need.
  
• Continuous Improvement: Identify opportunities to optimize builds, deployments, and operational process through automation and standardization.
  
• Networking and Infrastructure Integration: And automate network configurations, security groups, VPNs, load balancers, and firewalls within cloud and hybrid environments to ensure secure, resilient connectivity.
  
• Follow Agile Development Methodologies: Actively participate in the Agile development process by breaking epics into stories, adding acceptance criteria, estimating stories in points, and updating stories in Jira.
  
• Monitoring and Reliability Engineering: Engineer automated monitoring, alerting, and system observability to improve system visibility, reliability, and resilience. Support the monitoring of all customer-facing environments during working hours.
  
• Respond to System Issues: Respond to issues in all environments by providing troubleshooting expertise, repair actions, and root cause analysis. For root causes that can be fixed by DevSecOps, create an Epic, define the changes required, and work through the Agile development process to implement and deploy the fix.
  
• Provide On-Call Support at least one week per month, be available via phone and no further than 1 hour from Scott AFB
  
• Create self-healing automation that triggers when issues occur to avoid being called for support on nights and weekends
  
• Support Kubernetes and Containerization by collaborating / contributing to the creation of IaC for Kubernetes cluster deployment, security, and maintenance. Support the containerization of system components, providing developers with the tools and automation required for rapid declarative deployments. Extend the containerization automation through GitOps tools and methodologies.
  

What we like to see:

• Passionate about automation
  
• Flexible with requirement changes
  
• Enthusiastic about adopting DevSecOps
  
• Able to work with minimal direction
  
• Thrives when collaborating with a small team
  
• Knows when to ask for help when blocked
  
• Ready to continually learn AWS and Kubernetes on-the-job
  

You Should have experience with:

• RedHat Enterprise Linux operating systems
  
• Bash Scripting
  
• Public Key Infrastructure (certificate generation and management, mTLS communication)
  
• Networking and routing, especially in cloud environments and through DoD firewalls
  
• MongoDB, IBM DataPower, Identity and Access Management, Queueing systems
  
• AWS EC2, Networking, VPCs, etc.
  
• Git, Gitlab, Jenkins, Artifactory, Confluence, Jenkins
  
• Agile methodology
  

Requirements

• Technical Expertise: Proven experience with tools such as Terraform, Ansible, Jenkins, GitLab CI, or similar for IaC and CI/CD automation.
  
• Cloud and Containerization: Strong background in cloud infrastructure (AWS, Azure, or GovCloud) and willing to learn container orchestration (Kubernetes, Docker).
  
• Security Automation: Hands-on experience implementing DevSecOps practices, including automated security scanning, compliance validation, and vulnerability management.
  
• Scripting: Proficiency in one or more scripting languages such as Bash or PowerShell.
  
• Networking and Infrastructure Integration: Experience with network configurations, security groups, VPNs, load balancers, and firewalls.
  
• Methodology: Familiarity with Agile/Scrum development processes and modern DevOps toolchains.
  
• Implementation: Experience supporting lead engineers in automating deployment and installation workflows.
  

Qualifications:

• Security certification
  
• 4 or more years of experience in an engineering role (development or operations)
  
• Bachelor’s Degree in Computer Science, Engineering, or related field
  

Benefits

• Paid Time Off
  
• Medical benefits: Health Care, Vision, Dental, Long and Short Term Disability, and Life Insurance
  
• Dependent Care and Healthcare Flexible Spending Accounts
  
• Annual Health Reimbursement Arrangement
  
• Education Assistance Program
  
• 401(k) Plan