Senior DevSecOps Engineer

Description

The Defense Sector at Leidos is currently seeking an experienced Senior DevSecOpsEngineerfor one of ourAir Force Life Cycle Management Center programs.This role is critical inestablishingrobust security practices throughout the software development lifecycle and ensuring compliance with stringent security standards. The ideal candidate will have extensive experience inDevSecOps, strong leadership abilities, and a commitment to fostering a culture of security within the organization.This position offers an exciting opportunity to shapethe security landscape ofan Air Forceprogram, ensuring the secure development of software in a dynamic and innovative environment.

Primary Responsibilities:

• Lead the design and implementation of security practices within the DevOps pipeline for DoD applications, ensuring alignment with regulatory requirements.
• Evaluate and select security tools, integrating them into CI/CD workflows to enhance application security.
• Conduct advanced vulnerability assessments, threat modeling, and penetration testing to proactivelyidentifyand mitigate security risks.
• Collaborate with cross-functional teams to develop and promote secure coding practices, incident response plans, and security training.
• Mentor and guide junior and mid-level engineers, fostering knowledge sharing and professional growth within the team.
• Drive the automation of security testing and compliance processes,utilizingInfrastructure as Code (IaC) and security automation tools.
• Stay abreast of industry trends, emerging threats, and best practices inDevSecOpsand cybersecurity to continually improve security posture.
• Assessing, designing, developing, testing, and implementing Business Continuity & Disaster Recovery (BC/DR) solutions into a complex environment.

Basic Qualifications:

• US Citizen with at least an active Top Secret clearance with the ability to obtain and maintain a SCI prior to your start date.
• Bachelor's degree with 8+ years of experience or a Master's Degree with 6+ years of experience. Additional experience may be considered in lieu of a degree.
• Must have 2+ years of experience with JAVA
• DoD 8140 intermediate certification or DoD 8570 IAM Level II certifications or higher
• Strong understanding of software development paradigms and supporting technologies (e.g.change management & version control, CI/CD, Agile planning tools such as Jira or Gitlab)
• Strongbackground using Infrastructure as Code (IaC) and Configuration as Code (CaC)
• Strong experience configuring CI/CD pipelines supporting software development activitiesin aDevSecOpsenvironment
• Strongbackground in relational databases such as PostgreSQL, MySQL, or MS SQL Server.
• Strong experienceadministering complex environmentswith Linux and Windows operating systems, network administration, and networking protocols/functions (e.g., HTTP, HTTPS, SSL/TLS, SMTP, DNS)
• Extensive experience integrating security tooling into a hybrid cloud environment, with a nuanced understanding of the capabilities and drawbacksof eachcomponent
• Extensive experience provisioning and managing resources withinhybridIaaS/Cloud infrastructures (e.g., Azure, AWS, Google Cloud Platform, etc.)
• Extensive experience with container technologies such as Docker and container orchestration tools like Kubernetes
• Experience with automated provisioning and configuration tools like Terraform,Bicep,CloudFormation, Chef, Puppet, Ansible or similar technologies
• Experience integrating cloud services into solutions, especially Azure cloud services
• Excellent problem solving and analysis skills, including the ability to logically create structure and order from unstructured inputs.
• Self-starter thatis able towork independently whilepossessingthe communication skills to work effectively with software development teams and customers.
• Excellent interpersonal,verbaland written communication skills.

Preferred Qualifications:

• Active DoD TS/SCI security clearance and the ability to maintain that clearance during your employment.
• Experience with Air Force Life Cycle Management Centerprograms.
• Microsoft Certified: Azure Solutions Architect Expert or similar certification.
• Advanced certifications such as Certified Information Systems Security Professional (CISSP), CertifiedDevSecOpsEngineer (CDE), or similar.
• Extensive experience with security tools and practices relevant toDevSecOps(e.g., SAST, DAST, IAST).
• Experience deploying, configuring, and managingDevSecOpstoolchains for an enterprise
• Familiarity with cloud platforms (e.g., AWS, Azure, Google Cloud) and their security frameworks.
• Strong understanding of container security and orchestration tools (e.g., Kubernetes).
• Experience delivering softwaresolutionsinto high-security or air-gapped environments in defense or other highly regulated industries such as finance or healthcare
• Experience with compliance standards (e.g., OWASP, NIST) and DoD security regulations.
• Proven ability to drive change and influence security culture across an organization.

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

#Featuredjob