DevSecOps Engineer
$140,000–$175,000 year
Remote · United States
Job Summary
DevSecOps Engineer role focused on designing, deploying, and maintaining secure, cloud-native infrastructure for Department of War customers. Responsibilities include Kubernetes-based infrastructure provisioning and RBAC, Helm-based packaging and release management, policy enforcement with Istio/OPA Gatekeeper/Kyverno, building CI/CD pipelines with GitLab/GitHub/Jenkins, operating workloads on AWS GovCloud and Azure Government with high availability and cross-region compliance, hardening container images with DoW-approved registries, managing observability with Prometheus/Grafana/Datadog, contributing to ATO/SSP/CIS/STIG efforts, collaborating across development, security, and program teams to refine DevSecOps practices, supporting air-gapped/classified deployments, and coordinating with government platform teams and service providers. The role requires DoW security clearance, DoD framework understanding, and hands-on experience across container orchestration, policy, CI/CD, cloud, registries, observability, and security scanning. The compensation range is listed as Base Salary: $140,000 – $175,000 with benefits and equity where applicable.
Required Qualifications
- 4+ years of hands-on experience with Kubernetes in production environments
- Experience deploying and managing applications via Helm in multi-environment configurations
- Working knowledge of Istio, OPA Gatekeeper, Kyverno, or equivalent Kubernetes policy and service mesh tooling
- Experience with at least one major CI/CD platform: GitLab CI, GitHub Actions, Jenkins, or equivalent
- Hands-on experience with AWS and/or Azure cloud platforms, including IAM, networking, storage, and managed Kubernetes services (EKS, AKS)
- Experience with container image workflows: building, scanning, hardening, and distributing images via OCI registries
- Familiarity with monitoring and observability tools including Prometheus, Grafana, and/or Datadog
- Experience with Single Sign-On (SSO) and identity federation; familiarity with Keycloak or equivalent OIDC/SAML providers
- Active DoW security clearance (Secret or higher)
- Preferred Qualifications including Iron Bank, Registry1, Platform One, or Big Bang software factory environments
- Familiarity with GitLab Ultimate features including security dashboards and dependency scanning
- Experience supporting DoD programs or related military branch programs
- Exposure to Sigstore/cosign, vulnerability scanners, SBOM generation, and compliance scanning tools
- Prior work in cATO, continuous authorization, or Ongoing Authorization environments
- CKA/CKS/AWS GovCloud certifications or equivalent
- Understanding of DoD compliance frameworks: NIST 800-53, STIG, RMF, FedRAMP
- Active security clearance expected for onboarding and future access
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.