Senior DevSecOps Engineer

Job summary

Seeking a Senior DevSecOps Engineer to lead the implementation and maturation of DevSecOps and observability practices for a cloud-native, event-driven platform on AWS. This role involves supporting CI/CD, infrastructure automation, and platform reliability for Kafka/MSK-based event streaming, RPC-driven services, and real-time WebSocket applications.

Qualifications

• 8+ years of experience in DevSecOps, cloud engineering, or related roles.
• Strong experience with AWS cloud platforms and services.
• Experience building and maintaining CI/CD pipelines using Jenkins or similar tools.
• Experience with Infrastructure as Code (Terraform) and container orchestration (Kubernetes).
• Experience with monitoring and observability tools (Prometheus, Grafana, ELK stack).
• Familiarity with security best practices, including secrets management and secure pipeline design.
• Experience supporting distributed systems and event-driven architecture.
• Ability to lead technical initiatives and mentor team members.
• Eligible to obtain and maintain a Public Trust clearance.
• Experience working in VA or Federal environments.
• Experience supporting Kafka or event-driven architecture.
• Experience with Vault, Consul, Nexus, or similar enterprise tooling.
• Experience supporting real-time streaming or WebSocket-based systems.

Responsibilities

• Design, implement, and maintain CI/CD pipelines using Jenkins and Bitbucket for automated build, test, and deployment workflows.
• Develop and manage Infrastructure as Code (IaC) using Terraform and Packer for AWS-based environments.
• Deploy and manage containerized applications using Docker and Kubernetes.
• Implement and maintain observability solutions using Prometheus, Grafana, Elasticsearch, and Kibana.
• Support security practices including secrets management (Vault), IAM policies, and secure configuration management.
• Integrate security scanning tools and practices into CI/CD pipelines.
• Support Kafka/MSK infrastructure through automation, monitoring, and operational tooling.
• Implement logging, monitoring, and alerting strategies to support platform reliability and performance.
• Collaborate with cloud engineers and developers to embed DevSecOps best practices into development workflows.
• Support deployment and scaling of real-time streaming platforms, including WebSocket-enabled services.
• Automate environment provisioning, configuration management, and release processes.
• Support system resilience through monitoring, incident analysis, and continuous improvement practices.
• Provide technical leadership for DevSecOps strategy, tooling selection, and pipeline architecture.
• Establish standards for CI/CD, IaC, and security integration across the platform.
• Drive improvements in system reliability, scalability, and performance monitoring.
• Mentor junior engineers and promote DevSecOps culture and best practices across teams.
• Identify and mitigate risks related to deployment, security, and system availability.

Skills

Industry

Security clearance

Relocation