Mid-Level DevSecOps Engineer
Leidos · Huntsville, AL · 6 days ago
On-siteEngineering$70k–$126k/yrFull-time
Primary Responsibilities
- Design, implement, and continuously improve DevSecOps pipelines and practices across the organization
- Integrate security controls and automated testing into CI/CD pipelines (SAST, DAST, SCA, container scanning)
- Establish and enforce secure software development lifecycle (SDLC) standards and best practices
- Collaborate with software engineering, cybersecurity, and integration teams to embed security into all phases of development
- Drive adoption of Infrastructure as Code (IaC) and immutable infrastructure principles
- Oversee containerization and orchestration strategies using Docker
- Implement and manage secrets management, identity and access controls (IAM), and zero-trust security models
- Ensure compliance with applicable security frameworks and standards (e.g., NIST, RMF, etc.)
- Mentor and guide engineers on DevSecOps principles, secure coding practices, and automation strategies
- Evaluate, select, and integrate new tools and technologies to improve security, automation, and delivery speed
- Partner with leadership to define DevSecOps strategy, roadmap, and metrics for success
- Support audit and accreditation activities, including documentation and evidence collection
Basic Qualifications
- BS degree in computer science or related technical degree plus 2-4 years of prior relevant experience or MS degree in computer science or related technical degree plus 1-2 years of prior relevant experience.
- 1+ years of experience in software engineering, DevOps, or DevSecOps roles
- On-site work (no remote/hybrid options)
- Ability to obtain and maintain a Security+ Certification
- Hands-on experience designing and implementing CI/CD pipelines using tools such as Jenkins, GitLab CI/CD, GitHub Actions, or similar
- Proficiency in containerization and orchestration technologies (Docker, Kubernetes)
- Solid scripting and automation skills in languages such as Python, Bash, or PowerShell
- Excellent problem-solving skills and ability to operate in fast-paced, mission-critical environments
- Strong understanding of Linux operating systems, including system administration, troubleshooting, and performance tuning
- Strong collaboration and written communication skills
- Must be a U.S. citizen and have the ability to obtain and maintain a Final Secret Clearance
- Must be a resident of Huntsville, AL or willing to relocate to the Huntsville, AL area
Preferred Qualifications
- IAT Level II or Linux OS based certification
- Proven experience integrating security practices into the software development lifecycle (SDLC), including SAST, DAST, dependency scanning, and container security
- Experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, or Pulumi
- Strong knowledge of security frameworks and compliance standards (e.g., NIST, RMF, SCAP, STIGs, etc.)
- Experience implementing identity and access management (IAM), secrets management, and zero-trust architectures
- Experience working in Agile/Scrum environments and collaborating with cross function teams