DevSecOps Engineer
KaiHonua · Denver, CO · 2 wk ago
Engineering$145k/yrFull-time
About the role
Galapagos Federal Systems LLC is seeking a motivated and highly qualified DevSecOps Engineer to support the integration of development, security, and operations practices within a mission-critical Department of Defense (DoD) system.
Responsibilities
- Design, implement, and maintain DevSecOps CI/CD pipelines that support secure, automated software delivery
- Automate functional testing and integrate automated test cases into the DevSecOps pipeline prior to deployment authorization
- Support quarterly Agile sprint cycles, delivering bug fixes, emergency priority updates, and minor system enhancements
- Apply DoD Application Security and Development (ASD) STIG requirements to software architecture, development, and deployment processes
- Implement secure coding best practices, including adherence to OWASP security principles
- Conduct application security scans using tools such as Fortify and Sonatype, and remediate or mitigate identified vulnerabilities in accordance with Cyber Hardening Policies
- Operate and maintain development, test, and production environments within IL4 or IL5 cloud environments supporting Controlled Unclassified Information (CUI)
- Collaborate with development, operations, and security teams to ensure systems remain secure, compliant, and operationally resilient
Requirements
- DoD Active Security Clearance
- CompTIA Security+ CE (DoW 8140/8570 compliant)
- Experience with CI/CD pipelines and DevSecOps automation frameworks
- Strong technical experience with Oracle databases, SQL, Apache, and Tomcat environments
- Experience with DevSecOps and security tools such as Jenkins, Fortify, Sonatype, and JIRA
- Knowledge of DoD Risk Management Framework (RMF) processes and eMASS
- Familiarity with Agile/Scrum development methodologies
- Strong understanding of secure coding practices and OWASP security standards
- Experience with MicroStrategy reporting platforms
Qualifications
- Required: U.S. Citizenship
- Preferred: Bachelor's degree in Engineering, Computer Science, Information Technology, Systems Engineering, or a related technical discipline
Skills and Experience
- DoD Active Security Clearance
- Ability to obtain and maintain a Tier 3 (T3) background investigation for Noncritical-Sensitive position; Tier 5 (T5) required for privileged access role
- Prior experience supporting DMDC or DHRA systems
- Experience designing and managing CI/CD pipelines and DevSecOps automation frameworks
- Experience working within AWS GovCloud or other DoD-authorized cloud environments
- Strong technical experience with Oracle databases, SQL, Apache, and Tomcat environments
- Experience with DevSecOps and security tools such as Jenkins, Fortify, Sonatype, and JIRA
- Knowledge of DoD Risk Management Framework (RMF) processes and eMASS
- Familiarity with Agile/Scrum development methodologies
- Strong understanding of secure coding practices and OWASP security standards
- Experience with MicroStrategy reporting platforms
Benefits
- Medical, dental, vision, disability, and life insurance
- Flexible Spending Accounts
- 401(k)
- PTO
- Paid Parental Leave
- Tuition reimbursement
- Paid federal holidays
Pay
USD $145,000.00 - USD $150,000.00 /Yr.
Schedule
N/A
Contact
Please Apply at: https://www.aplitrak.com/?adid=YmJnZW5lcmljLjY1NTU4Ljg3NjBAaG9udXNlcnZpY2VzY29tcC5hcGxpdHJhay5jb20