DevSecOps Engineer

MAG is recruiting for a DevSecOps Engineer who will enable rapid, secure delivery of tactical capabilities through world-class automation. You'll build the infrastructure and pipelines that allow a small team to deliver like a large organization while maintaining security in contested environments.This is a Hybrid Position - Remote mainly - but as well on call to come into a MAG office when requested.We are seeking candidates who live in proximity to our corporate HQ in Fairfax, VA primarily but will entertain persons living near our satellite offices in:Aberdeen, MD - Titusville, FL - Newport News, VA - Carthage NCDuties include, but not limited to:Primary ResponsibilitiesDesign and implement CI/CD pipelines for multi-architecture deploymentsDevelop Infrastructure as Code (IaC) for hybrid cloud/edge environmentsImplement container orchestration for resource-constrained platformsCreate automated testing frameworks (unit, integration, security, performance)Build observability solutions (metrics, logging, tracing, profiling)Develop GitOps workflows for configuration managementOptimize build processes for embedded and edge platformsSecondary ResponsibilitiesImplement security scanning in CI/CD pipelines (SAST, DAST, dependency scanning)Automate compliance validation (STIG, RMF controls)Design and implement secrets management solutionsCreate security monitoring and incident response automationSupport security documentation and authorization packagesMinimum Requirements:Primary Experience / Qualifications: 5+ years DevOps/DevSecOps experienceExpert-level knowledge of CI/CD platforms (Azure DevOps, GitLab CI, Jenkins)Experience with artifact repositories (e.g., JFrog Artifactory, Sonatype Nexus, Azure Artifacts, to include Azure Container Registry) for managing diverse package typesStrong scripting skills (Python, Bash, PowerShell)Extensive experience with containerization (Docker, Podman) and orchestration (Kubernetes)Proficiency with IaC tools (Terraform, Ansible, Pulumi)Experience with cloud platforms (Azure required, AWS/GCP beneficial)Understanding of security scanning tools and practicesExperience with monitoring stacks (Prometheus, Grafana, ELK)Knowledge of Git workflows and version control best practicesPreferred QualificationsExperience with embedded system CI/CD and cross-compilationKnowledge of military software development processesFamiliarity with RMF and security authorization processesExperience with air-gapped and classified environmentsUnderstanding of supply chain security and SBOMKubernetes certifications (CKA, CKS)Experience with chaos engineering and resilience testingFamiliarity with Policy-as-Code (PaC) tools like Open Policy Agent (OPA) for automating governance and security checksEducation & Experience:Bachelor's degree in CS, EE, or related field; Master's preferredClearance: Must be eligible for Secret security clearanceMust be a US citizenWhat Makes You Successful HereYou automate everything that can be automatedYou treat infrastructure as code, not clickopsYou build security into pipelines, not bolt it on afterYou can work across cloud, on-prem, and edge environmentsYou measure success by how little manual work the team doesWhy Join MAG:Work on meaningful problems that directly impact national securitySmall, elite team where your contributions matter immediatelyAccess to cutting-edge hardware and technologiesRapid prototyping environment - see your ideas deployed in weeksDirect interaction with end users and field deploymentsProfessional development and conference attendance supportFlexible work arrangements with occasional field exercisesOpportunity to shape the future of tactical edge computing

Created: 2025-10-04