DevSecOps Engineer (w/ active Secret)
Critical Solutions
- Location
- Remote (United States)
- Employment
- Full-time
- Level
- Senior Level
About the Role
Critical Solutions is seeking a DevSecOps Engineer to support a federal customer by building and maintaining automated CI/CD pipelines and hardened Kubernetes environments. The role involves automating security compliance, managing infrastructure as code, and contributing to application feature development with a security-first perspective.
Skills
Benefits
- Medical Insurance
- Dental Insurance
- Vision Insurance
- Life Insurance
- 401k Matching
- Flexible Time Off
- Higher Education Reimbursement
- Training Reimbursement
Perks
- Remote Solely
Full job details
DevSecOps Engineer (w/ active Secret)
Location: Remote
Clearance: Secret Type:
Full-time, Remote
JOB DESCRIPTION
Critical Solutions is seeking a DevSecOps Engineer to support our federal customer.
The DevSecOps Engineer is a hands-on practitioner responsible for building, automating, and sustaining the delivery infrastructure that enables mission-critical software to move fast without compromising compliance. You will actively build and maintain CI/CD pipelines, harden and manage Kubernetes environments, automate security compliance, and leverage AI as a force multiplier across the entire delivery lifecycle. When team capacity demands it, you will contribute directly to feature development - bringing a security-first perspective to application code.
PRIMARY ROLES AND RESPONSIBILITIES:
- Design, implement, and maintain automated CI/CD pipelines that carry code from development through security scanning, compliance validation, and deployment into the organzation and DoD environments
- Build and maintain hardened Kubernetes environments aligned to DISA STIG requirements across cloud and restricted network deployment contexts
- Automate security artifact generation including SBOM production, CVE scanning, and continuous compliance validation
- Drive adoption of Infrastructure as Code, GitOps practices, and controls-as-code across the team
- Leverage AI tooling to accelerate pipeline development, vulnerability triage, compliance remediation, and operational documentation
- Partner closely with software engineers, systems engineers, and ISSEs to embed security and compliance requirements from the start of development
- Maintain and evolve deployment infrastructure across multiple secure environments, including cloud and air-gapped or intermittently connected contexts
- Support ATO processes through automated evidence generation, documentation as code, and direct collaboration with the security team
- Establish and promote standards for pipeline design, container security, secrets management, and deployment consistency
- Contribute to feature development when team capacity requires, applying security-first development practices to application code
- Maintain operational documentation including runbooks, deployment guides, and architecture diagrams as version-controlled artifacts
BASIC QUALIFICATIONS:
- Active Secret clearance
- BS degree and 7+ years of relevant professional experience, including at least four (4) years of professional DevSecOps or DevOps engineering experience
- Hands-on experience designing and maintaining CI/CD pipelines using GitLab CI; experience with additional pipeline tools a plus
- Experience with Kubernetes administration and hardening in DoD or compliance-driven environments - RKE2 or K3S experience strongly preferred
- Experience implementing DISA STIG compliance in containerized and Linux environments (RHEL or Rocky Linux)
- Proficiency with Infrastructure as Code tooling, particularly Terraform
- Experience with Helm chart authoring and Kubernetes deployment management
- Experience with automated security scanning, SBOM generation, and CVE triage and remediation
- Scripting proficiency in Python or Bash for pipeline and operational automation
- Demonstrated use of AI tooling to accelerate engineering workflows
- Background contributing to application feature development alongside infrastructure work
- Ability to operate independently and manage workload across competing priorities in a small, fast-moving team
PREFERRED QUALIFICATIONS:
- Experience supporting ATO through automation, documentation, and technical leadership
- Active Security+ certification or equivalent IAT Level II certification
- Experience with secrets management tooling such as Vault, Sealed Secrets, or SOPS
- Familiarity with observability and monitoring tools such as Prometheus or Grafana
- Certified Kubernetes Administrator (CKA) or willingness to obtain upon onboarding
- Experience applying "as code" approaches beyond infrastructure (e.g., configuration-as-code, policy-as-code, workflows-as-code, documentation-as-code)
ADDITIONAL INFORMATION:
CLEARANCE REQUIREMENT: Must possess an active DoD Secret Clearance. In addition, selected candidate must undergo background investigation (BI) and finger printing by the federal agency and successfully pass the preceding to qualify for the position. US CITIZENSHIP IS REQUIRED.
CRITICAL SOLUTIONS PAY AND BENEFITS:
Salary range $- $.Compensation for this position is based on geographic location, experience, skills, and other job-related factors. The salary range for this position represent the typical salary range for this job level and this does not guarantee a specific salary. Compensation is based upon multiple factors such as responsibilities of the job, education, experience, knowledge, skills, certifications, and other requirements.
BENEFIT SNAPSHOT: 100% premium coverage for Medical, Dental, Vision, and Life Insurance, Supplemental Insurance, 401K matching, Flexible Time Off (PTO/Holidays), Higher Education/Training Reimbursement, and more.