Senior DevSecOps Engineer

📋 Description

• • Lead the end-to-end design, development, and implementation of secure, cloud-native infrastructures that power mission-critical systems for the Department of Homeland Security (DHS). You will serve as the technical authority who translates complex federal security requirements into scalable, automated DevSecOps solutions.
• • Own the architecture and deployment of enterprise-grade applications on AWS, ensuring they meet stringent performance, availability, and compliance standards. Your decisions will directly influence how millions of citizens interact with DHS services every day.
• • Drive continuous integration/continuous delivery (CI/CD) excellence by architecting pipelines in Jenkins that automate build, test, security scanning, and deployment stages. You will embed security gates at every step, shifting vulnerability detection left and reducing time-to-production from weeks to hours.
• • Champion Infrastructure-as-Code (IaC) practices using Terraform, CloudFormation, or CDK to provision and manage AWS resources. Your code will be versioned, peer-reviewed, and unit-tested just like application code, ensuring repeatability and disaster recovery at scale.
• • Implement and harden Kubernetes clusters with security policies, network segmentation, secrets management (e.g., Vault, AWS Secrets Manager), and runtime monitoring. You will design multi-tenant namespaces that isolate workloads while maximizing resource utilization.
• • Establish comprehensive observability through centralized logging (ELK/EFK), metrics (Prometheus/Grafana), and distributed tracing (Jaeger). You will define SLIs/SLOs aligned with DHS mission objectives and automate incident response playbooks to uphold 99.9%+ uptime.
• • Mentor cross-functional squads of developers, security engineers, and system administrators on DevSecOps best practices. Your guidance will elevate the entire organization’s security posture and delivery velocity.
• • Evaluate emerging technologies—service meshes, policy-as-code, confidential computing—and present adoption roadmaps that balance innovation with federal risk tolerance. You will pilot proofs-of-concept and quantify ROI before enterprise rollout.
• • Collaborate with DHS stakeholders to translate policy mandates (FISMA, FedRAMP, NIST 800-53) into actionable technical controls. You will author security architecture documents and participate in Authority to Operate (ATO) assessments.
• • Optimize cloud spend through rightsizing, reserved capacity planning, and automated shutdown schedules. Your cost-awareness will free budget for innovation while maintaining performance SLAs.
• • Establish a culture of blameless post-mortems and continuous improvement. You will institutionalize chaos engineering drills to proactively surface weaknesses before adversaries or outages do.
• • Contribute to open-source communities and internal guilds, sharing reusable modules and security patterns that accelerate delivery across multiple DHS agencies.