Sr. Staff / Senior DevSecOps Engineer
SciTec · Dayton, OH · 2 wk ago
On-siteEngineering$114k–$174k/yrFull-time
Key Responsibilities
- Design, maintain, and improve CI pipelines (GitLab CI) for secure software builds and deployments
- Orchestrate automated deployments across development, test, and production environments using Kubernetes and Helm
- Ability to perform tasks well aligned with team and product goals with limited technical oversight and guidance
- Provide thought leadership, mentorship, and input into tasks for projects
- Integrate CI pipelines with tools for artifact management, testing, code quality, and security scanning
- Manage software release processes including version promotion, branching, integration, and validation
- Maintain and implement Helm charts for application deployments
- Perform deployment validation and issue resolution in Kubernetes-based environments
- Ensure adherence to cybersecurity protocols and secure coding practices
- Support software vulnerability scanning (Static & Dynamic Analysis Tools) and remediation processes
- Perform other DevSecOps-related duties as assigned
Requirements
- Bachelor's degree in Information Technology, Computer Science, or related technical field
- 5+ years of DevOps engineering, system administration and infrastructure management
- Container orchestration with tools such as Docker, Kubernetes, Kustomize, or Helm
- 2+ years of experience with Infrastructure as Code tooling (Terraform, CloudFormation, Ansible, etc.)
- Proven ability to automate complex workflows and processes
- Design systems to maximize ability to audit and observe
- Demonstrated ability to collaborate effectively across technical disciplines
- Strong attention to detail and commitment to high-quality, well-tested code
- Excellent verbal and written communication skills
- Professional experience working in Linux environments
- Ability to obtain and maintain a DoD security clearance
Preferred Skills
- Advanced degree (e.g., Masters, PhD) in Computer Science or Engineering
- Advanced Security Credentials: Active IAT Level III certification (e.g., CISSP, CASP+, or SecurityX)
- Linux systems administration
- Container security tools (e.g., Grype, Syft)
- SAST/SCA tools (e.g., Fortify, SonarQube, Snyk, Trivy, ZAP)
- AWS (EKS, EC2, Lambda)
- Application networking with tools such as Istio, NGINX, or Traefik
- Monitoring and observability tools (e.g., Prometheus, Grafana)
- Authentication tools (e.g., Keycloak)
- Artifact repositories (e.g., JFrog Artifactory, Nexus)
- Additional programming experience with strongly typed languages such as C++ or Rust
- Familiarity with secure software development and vulnerability management workflows
- Experience supporting RMF processes, ATO activities, or DISA STIG application
Benefits
- 4% Safe Harbor 401(k) match
- 100% company paid HSA Medical insurance, with a choice of 2 buy-up options
- 80% company paid Dental insurance
- 100% company paid Vision insurance
- 100% company paid Life insurance
- 100% company paid Long-term Disability insurance
- Short-term Disability insurance
- Annual Profit-Sharing Plan
- Discretionary Performance Bonus
- Paid Parental Leave
- Generous Paid Time Off, including Holiday, Vacation, and Sick Pay
- Flexible Work Hours