DevSecOps Test Engineer

Clearance: TS/SCI clearance required (or ability to obtain)

Experience Level: Mid-Level (5+ years)

Job Description:

We are seeking a highly skilled DevSecOps Test Engineer with proven experience supporting multiple Department of War (DoW) programs to join our growing engineering team. In this role, you will design, implement, and maintain secure, automated CI/CD pipelines that integrate security throughout the software development lifecycle. You'll collaborate with software athaengineers, cybersecurity professionals, and operations teams to ensure that systems meet both mission-critical performance standards and DoW compliance requirements. You'll analyze the effectiveness of current security protocols and test strategies, making necessary updates to keep pace with evolving threats and industry best practices with the goal to minimize security risks while ensuring that software applications run smoothly and efficiently. US Citizenship required for this position; must be able to get a DoW TS/SCI clearance.

Key Responsibilities

• Design, implement, and manage CI/CD pipelines (e.g., Jenkins, GitLab CI, GitHub Actions, or Azure DevOps) with integrated security controls.
• Design and implement testing plans to ensure that software is performing as expected and is protected from potential threats by creating tests to identify issues and vulnerabilities.
• Implement and update automated testing processes to make testing and validation quicker and more efficient, saving time and resources for the company.
• Monitor performance of tests to identify any patterns or trends that can help improve the testing process.​
• Train and educate team members about security practices and testing procedures so everyone can contribute to a safer software environment.
• Regularly evaluate and adjust testing strategies to ensure they are still effective and relevant.
• Automate build, test, deployment, and monitoring processes using Infrastructure as Code (IaC) tools such as Terraform, Ansible, or CloudFormation.
• Integrate security scanning tools for SAST, DAST, and container security (e.g., SonarQube, Aqua, Anchore, Twistlock, Checkmarx, Nessus).
• Manage and secure containerized environments using Docker and Kubernetes in accordance with CIS standards.
• Support secure cloud deployments in AWS, Azure, and GCP environments.
• Collaborate with cybersecurity teams to implement Zero Trust principles and continuous compliance monitoring.
• Develop and maintain documentation for infrastructure, automation scripts, and security compliance artifacts (e.g., POA&M, SSP).
• Participate in DevSecOps maturity assessments and continuous improvement initiatives.
• Troubleshoot and resolve complex issues in build, deployment, test, and production environments.

Qualifications:

• Active security clearance or ability to obtain one.
• Strong analytical and troubleshooting skills.
• Bachelor's degree in Computer Science, Information Systems, or related field (or equivalent experience).
• 5+ years of experience in DevOps, SecOps, or related software/infrastructure engineering roles.
• 2+ years supporting DoW systems or defense contractors, with a strong understanding of DoW cybersecurity frameworks (RMF, NIST SP 800-53, STIGs, etc.).
• Hands-on experience with CI/CD tools (Jenkins, GitLab CI/CD, GitHub Actions, etc.).
• Proficiency with IaC tools (Terraform, Ansible, Puppet, or Chef).
• Experience securing and deploying containerized applications using Docker and Kubernetes.
• Knowledge of secure coding, vulnerability management, and automated compliance enforcement.
• Familiarity with cloud security best practices for AWS, Azure, GCP, or other government-approved cloud providers.

Preferred Qualifications

• CompTIA Security+ CE, CISSP, Certified Ethical Hacker, or DoD 8570-compliant certification.
• Experience implementing DevSecOps pipelines in classified environments.
• Knowledge of software supply chain security and SBOM management.
• Experience with Kubernetes security tools (OPA/Gatekeeper, Kyverno, Falco, etc.).
• Familiarity with Agile / Scrum / SAFe methodologies.

Desired Attributes:

• Ability to identify and solve complex issues in a timely and efficient manner.
• A desire to learn and apply technology in a pragmatic way to create client value.
• Excellent communication and collaboration skills.
• Strong attention to detail and commitment to delivering on-time, high-quality work.
• A passion for technology and continuous learning.

Job Type: Full-time

Pay: $150, $154,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Application Question(s):

• TS/SCI clearance required (or ability to obtain) is required for this position. Do you qualify for one?

Work Location: Hybrid remote in Manassas, VA 20110