DevSecOps and Automation Subject Matter Expert - Military veterans preferred

Sev1tech, Inc.


DevSecOps and Automation Subject Matter Expert

US-VA-Arlington

Job ID: 2025-8771
Type: Full Time W/Benefits Ret Match
# of Openings: 1
Arlington, VA

Overview

We are seeking a highly skilled and knowledgeable DevSecOps and Automation Subject Matter Expert to join our team and support the deployment of an enterprise Software Factory for our federal customer. In this role, you will play a crucial role in designing, implementing, and maintaining the infrastructure, tools, and processes necessary to enable a seamless and secure software development and deployment lifecycle. Your expertise in DevSecOps practices, automation, and federal security standards will be fundamental in ensuring the successful establishment and operation of an efficient and compliant Software Factory for our federal client.

This position requires onsite presence at the customer location (Arlington, VA) one-two days per week.

If you are a seasoned DevSecOps and Automation expert, enthusiastic about deploying an efficient and secure Software Factory for a federal customer, we encourage you to apply for this position.

Responsibilities:

• Collaborate with cross-functional teams, including software developers, infrastructure engineers, security officers, and project managers, to gather requirements and provide technical guidance on the design and implementation of a Software Factory.
• Design, develop, and implement a scalable and secure DevSecOps infrastructure, including CI/CD pipelines, version control systems, and automated testing frameworks.
• Establish and maintain secure cloud environments (e.g., AWS, Azure, or GCP) that comply with federal security standards (e.g., FISMA, FedRAMP).
• Implement automated deployment and configuration management processes, leveraging infrastructure-as-code (e.g., Terraform, CloudFormation, Ansible) and containerization technologies (e.g., Docker, Kubernetes).
• Develop and enforce best practices and standards for code quality, application security, and performance optimization, ensuring adherence to federal guidelines and compliance requirements.
• Collaborate with security officers to identify and implement appropriate security controls, automated security scans, and vulnerability assessments throughout the software development lifecycle.
• Provide subject matter expertise in DevOps and automation, influencing the adoption of DevSecOps practices within the Software Factory.
• Conduct training sessions and workshops to educate and empower development teams in the use of DevSecOps tools and methodologies.
• Monitor the performance and health of the Software Factory infrastructure, applying necessary patches, upgrades, and optimizations to ensure high availability and minimal downtime.
• Continuously evaluate new tools and technologies in the DevSecOps space, proposing enhancements to existing systems, methodologies, and processes.
• Develop and maintain comprehensive documentation on the DevSecOps infrastructure, processes, and configurations.
• Stay up to date with emerging trends and industry best practices in DevSecOps, cloud computing, and automation, applying this knowledge to drive innovation and improvement in the Software Factory environment.
• Work closely with the federal client's IT staff, security personnel, and other stakeholders to understand their specific requirements, address their concerns, and resolve technical challenges.

• Bachelor's degree in computer science, software engineering, or a related field. Equivalent experience will also be considered.
• Proven experience as a DevOps Engineer, Automation Engineer, or similar role, preferably in a federal or government contracting environment.
• Strong proficiency with relevant DevSecOps tools and technologies, such as CI/CD pipelines (e.g., Jenkins, GitLab), version control systems (e.g., Git), configuration management tools (e.g., Terraform, Ansible), and containerization platforms (e.g., Docker, Kubernetes).
• Expertise in designing, implementing, and maintaining cloud environments with a focus on security and compliance using platforms like AWS, Azure, or GCP.
• In-depth understanding of federal security guidelines and compliance standards (e.g., FISMA, FedRAMP) and experience deploying software solutions adhering to these standards.
• Solid knowledge of security scanning tools (e.g., SonarQube, Fortify, OWASP Dependency Check) and vulnerability assessment practices.
• Strong scripting and automation skills (e.g., Bash, Python, PowerShell) to streamline and automate manual tasks and processes.
• Familiarity with Agile/Scrum development methodologies and experience working within an Agile team.
• Excellent communication and collaboration skills, with the ability to effectively interface with technical and non-technical stakeholders.
• US citizenship and the ability to obtain and maintain a government security clearance is required.

Clearance Preference:

• Active DHS/CISA suitability - 1st priority
• Any DHS badge + DoD Top Secret - 2nd choice
• DoD Top Secret + willingness to obtain DHS/CISA suitability - 3rd choice (it can take 10-60 days to obtain suitability – work can only begin once suitability is fully adjudicated)

PI270249877