DevSecOps Engineer

Job Description:

Our Reston, VA office is seeking a DevSecOps Engineer to help secure and improve software delivery across the enterprise. This role focuses on embedding security, quality, compliance, and software supply-chain controls into CI/CD workflows while partnering with software development, cybersecurity, platform engineering, systems engineering, and program teams.

This is an engineering role, not a pure governance or vulnerability-management position. The DevSecOps Engineer will work across Azure DevOps Server, Nexus, SonarQube, Kubernetes/K3s deployment workflows, artifact controls, and secure release patterns to help teams deliver software securely and reliably.

Occasional after-hours/weekend maintenance and emergency response may be required.

Key Responsibilities:

Secure CI/CD & Release Workflows

• Design, implement, and improve secure CI/CD patterns in Azure DevOps, including reusable YAML templates, quality gates, artifact controls, and release safeguards
• Support secure release workflows across development, test, integration, staging, and production environments
• Troubleshoot pipeline failures, permissions issues, dependency problems, scan failures, and release blockers

Software Supply Chain & Security Controls

• Integrate security and quality checks into build and release workflows, including SAST, SCA, dependency scanning, secrets scanning, code-quality gates, container scanning, and artifact validation
• Support tools such as Nexus, SonarQube, Azure DevOps artifacts, and related code-quality or artifact-management platforms
• Partner with cybersecurity to align CI/CD controls with SSP, RMF, NIST, CMMC, STIG, Zero Trust, audit, and program requirements

Kubernetes Guardrails & Developer Enablement

• Partner with platform engineering on secure Kubernetes/K3s deployment standards, including namespaces, RBAC, ServiceAccounts, Helm, ingress, TLS, storage, quotas, and workload security
• Create documentation, examples, runbooks, and onboarding materials for secure pipeline and deployment workflows
• Track recurring developer pain points, pipeline health, scan outcomes, release blockers, and control gaps; turn findings into automation, templates, documentation, or improved guardrails

Required Qualifications:

• 5+ years of experience in DevOps, DevSecOps, platform engineering, software delivery, systems engineering, or a closely related technical role
• Hands-on experience with Azure DevOps pipelines, YAML, build/release workflows, repositories, artifacts, permissions, or agent-based builds
• Experience implementing security, quality, or compliance controls in CI/CD workflows
• Experience with secure software delivery practices such as SAST, SCA, dependency scanning, secrets handling, code-quality gates, artifact controls, or container scanning
• Experience troubleshooting CI/CD failures, build issues, deployment problems, permissions issues, or dependency-related errors
• Experience with Kubernetes, K3s, containers, Helm, or similar deployment technologies
• Experience with scripting or automation using PowerShell, Bash, Python, or similar languages
• Ability to write clear technical documentation, runbooks, onboarding guides, and troubleshooting procedures
• Eligible to obtain and maintain a U.S. security clearance
• Willing and able to work in regulated, secure, or compliance-bounded environments

Preferred Qualifications:

• Active U.S. security clearance
• Experience with Azure DevOps Server
• Experience integrating or administering Nexus, SonarQube, or similar artifact and code-quality platforms
• Experience with SBOM generation, SCA, container scanning, artifact signing, provenance, or software supply-chain security
• Experience with policy-as-code, OPA/Gatekeeper, Kubernetes admission controls, or secure workload policies
• Experience with Infrastructure-as-Code or Configuration-as-Code practices using Terraform, Ansible, Bicep, CloudFormation, or similar tools
• Experience with Prometheus, Grafana, Loki, or similar observability platforms
• Experience in defense contracting, government programs, CMMC, NIST 800-171, RMF, STIGs, or other compliance-driven environments

Position Location: Reston, VA (the selected individual will be expected to work onsite in the Reston, VA office)

Perks and Benefits

• Medical, Dental and Vision Insurance
• Accompanying FSA and HSA options
• Additional Voluntary Benefits
• Paid Time Off
• 9 Observed Holidays and 2 Floating Holidays
• Paid Parental Leave
• Military Leave
• Tuition Reimbursement
• Professional Development Reimbursement
• Annual Salary Reviews
• Profit Sharing
• 401(k) Traditional and Roth Options
• Gym and Fitness Reimbursement
• Employee Assistance Program
• Employee Referral Program