DevSecOps Engineer with Security Clearance

---

Job description

ASRC Federal is seeking an experienced DevSecOps Engineer s in support of a new government program. This program will support and augment ongoing efforts to achieve, maintain , continuously improve, and integrate ZT operational capabilities and solutions across ZT pillars. The purpose of this pro gram is to provide enhanced capabilities and integration of operational capabilities and services across ZT pillars to accelerate ZT maturity beyond its current rate, and achieve and maintain White House, OMB , and DHS ZT maturity goals over the next two years . The DevSecOps Engineers will assess the maturity of the D evSecOps environment on an application basis. They will advise and support the development of a roadmap to attain optimal Zero Trust maturity. They will include the configuration and maintenance of the DevSecOps environment while collaborating with security, assurance, and product owners . The ideal candidate will have previous Federal agency experience with DevSecOps and CI/CD configuration. This position is REMOTE . Responsibilities: E nsures that the development and deployment pipelines are secure, automated, and efficient. R esponsible for designing , advising , and training software development teams on automation and integration activities necessary for DevSecOps workflows. Create and maintain technical documentation. Solution design, development, integration, and testing. Will need to apply experience and advanced knowledge of software development security principles, and concepts to develop plans and techniques to improve ZT maturity . Will need to understand the current state of applications to include the existing environments and Operating Systems (OS) and technical restrictions that may be present with legacy code. D eveloping, integrating, and implement ing solutions to diverse, complex problems. Will define, plan, and organize assigned resources to accomplish organizational objectives . ASRC Federal Advantages Learning and Development: After 90 days of employment, regular full-time employees are eligible to participate in our professional development program including funds annually to go towards Associate's, Bachelor's or Graduate Degrees; Industry standard professional certification; A professional certificate program; Continuing education classes; and Registration fees to attend professional conferences. Employee Resource Groups: That provide our employees the opportunity to collaborate and network with colleges with common interests, backgrounds, and experiences including Women's Impact Network (WIN), Multicultural ERG, Military Community (MILCOM), and Pride ERG for LGBTQ+ employees and allies. Purpose Driven Careers: Certified Great Place to Work ; Certified Military Times' 'Best for Vets' and 'Top 25 Veteran Employer.' Benefits: Comprehensive insurance packages including medical, dental, vision, life insurance, and short term/long term disability, as well as a 401K with generous company match and immediate vesting. Holidays: 11 paid holidays. Requirements: Must be a US Citizen able to obtain an agency-specific suitability / public trust clearance prior to starting . Bachelor's degree in computer science, electronics engineering, engineering, or another technical discipline. Minimum of 8 years' experience. Fluency in one or more of the following programming languages: Java, C#, Python, Go. 5 years minimum experience implementing automated workflows in CI/CD, DevOps, or DevSecOps environments. 5 years minimum experience using tools that enable automated workflows, such as Jenkins, GitLab, TFS, Bitbucket, Git, etc. 5 years minimum experience with containers and container technologies such as Docker, Podman , Kubernetes, etc. Must have experience in designing, advising, and training software development teams in automation and integration activities required for DevSecOps workflows. Must have experience with scripting languages. 4 years minimum experience implementing automation throughout the Software Development Life Cycle for DevSecOps pipelines. Knowledge of assessing the capability of existing DevSecOps pipelines throughout SEC, the ability to design and implement improvements, and the ability to assist software development teams in their use. Experience Working in an Agile Framework environment Knowledge of DoD security requirements and compliance Desired Skills and Qualifications: Cloud experience specifically, AWS, Google, or Azure. Proficiency in AWS Cloud administration and AWS services. Proficiency in managing EC2 servers, AMIs, restores, and backups. Proficiency in configuring and monitoring AWS CloudWatch for resource metrics, logs, and alarms. Knowledge of AWS Security Hub for centralized security findings and compliance checks. Proficiency in managing AWS storage services (e.g., S3, EBS, EFS). Familiarity with AWS Detective for threat detection and investigation. Experience with AWS Backup for automated backups and retention policies. Experience with AWS Systems Manager for patch management, automation, and compliance. AWS or other applicable Technical Certification.

<!– job description page –>