DevOps Engineer (Secret Clearance)

About Easy Dynamics Corporation


Easy Dynamics is a leading IT service provider specializing in cybersecurity, cloud computing, and risk management for federal agencies. Since 2006, we have partnered with our customers to design, build, and secure the systems that protect our people, places, and way of life. Our work is grounded in deep technical expertise, thoughtful problem-solving, and a clear understanding of the complex environments our customers operate in.


Our world-class team of engineers, consultants, and subject-matter experts are builders, problem-solvers, and trusted advisors who thrive on solving unique and ever-evolving digital challenges. We bring a hands-on, mission-focused approach to every engagement, delivering solutions that are built to last.


About the role

A DevSecOps Engineer integrates security practices throughout the software development lifecycle within a Scrum framework. This role requires expertise in security automation, compliance monitoring, and Continuous Integration/Continuous Deployment (CI/CD) pipelines to ensure applications meet security standards while maintaining rapid development cycles. The position involves close collaboration with development teams, security officers, and stakeholders to deliver secure, compliant applications through iterative development processes.


What you'll do

  • Security Integration – Implement and maintain security controls throughout the development pipeline, ensuring security is embedded in every phase of the software development lifecycle.
  • Compliance Management – Collaborate with Information System Security Officers (ISSOs) to review Security Technical Implementation Guides (STIGs) and support Authority to Operate (ATO) processes, ensuring compliance with security standards and regulatory requirements.
  • CI/CD Pipeline Security – Design, implement, and maintain secure CI/CD pipelines with automated security testing, vulnerability scanning, and compliance checks integrated into deployment workflows.
  • Scrum Process Participation – Actively participate in Scrum ceremonies, including sprint planning, daily standups, sprint reviews, and retrospectives, while providing security guidance and effort estimates for security-related tasks.
  • Vulnerability Management – Conduct regular security assessments, vulnerability scans, and penetration testing, while coordinating remediation efforts with development teams.
  • Infrastructure as Code (IaC) – Develop and maintain secure infrastructure configurations using Infrastructure as Code principles with automated security policy enforcement.
  • Security Monitoring – Implement and manage security monitoring tools, logging systems, and incident response procedures to detect and respond to security threats in real time.
  • Risk Assessment – Perform security risk assessments, threat modeling, and security architecture reviews to identify and mitigate potential vulnerabilities.
  • Documentation and Training – Create security documentation, procedures, and training materials while maintaining compliance artifacts for audit purposes.

Qualifications

  • Required: 4 years of experience + Bachelor’s degree, or 8 years of experience
  • Preferred: DoD Secret clearance or equivalent 
  • IAT Level II certification required (e.g., Security+ CE, CCNA-Security, GSEC, GICSP, SSCP, CySA+, or other DoD 8570.01-M / DoD 8140 approved certifications at IAT Level II)
  • AWS - Experience specifically with AWS CDK and processes (preferred)
  • DevSecOps Expertise — Strong experience in DevSecOps practices, security automation, and secure software development within enterprise environments.
  • Scrum Methodology — Deep understanding of Scrum principles and Agile development practices, including integrating security requirements into sprint planning and user story development.
  • Security Standards Knowledge — Extensive knowledge of STIGs, NIST frameworks, ATO processes, and federal security compliance requirements, with experience working alongside ISSOs and security teams. Hands-on experience with ATO and STIG maintenance and renewal is preferred.
  • CI/CD and Automation — Proficiency with CI/CD tools, with GitLab CI preferred, as well as containerization technologies including Docker and Kubernetes, and automation platforms such as Terraform, Ansible, and CloudFormation.
  • Cloud Security — Experience with cloud security platforms and cloud-native security tools, with AWS Security Hub preferred. Familiarity with multi-cloud security strategies and additional platforms (Azure Security Center, Google Cloud Security) is a plus.
  • Programming and Scripting — Proficiency in scripting languages, JavaScript (is preferred),  Bash, and PowerShell, with experience using security testing frameworks and static/dynamic analysis tools.
  • Security Tools — Experience with vulnerability scanners (Nessus, OpenVAS), SAST/DAST tools, container security scanning solutions, and security orchestration platforms.
  • Communication and Collaboration — Excellent communication skills with the ability to work effectively across cross-functional Scrum teams, security officers, compliance teams, and stakeholders in fast-paced development environments.



Salary range for this role is $115,000-125,000 plus annual bonus



Easy Dynamics is an equal opportunity employer. Applicants are considered for positions without discrimination on the basis of race, color, religion, sex, national origin, age, disability, sexual orientation, gender identity, veteran status or any other consideration made unlawful by applicable federal state or local laws.

Program Delivery

Remote (United States)

Udostępnij w:

Warunki korzystania z usługPrywatnośćPliki cookieUsługa działa z technologią Rippling