Senior DevSecOps Engineer - Active Top Secret required
Type of Requisition:
RegularClearance Level Must Currently Possess:
Top SecretClearance Level Must Be Able to Obtain:
Top Secret/SCIPublic Trust/Other Required:
NoneJob Family:
IT Infrastructure and OperationsJob Qualifications:
Skills:
Configuration Management (CM), Endpoint Management, IT Configuration ManagementCertifications:
NoneExperience:
5 + years of related experienceUS Citizenship Required:
YesJob Description:
Job Description
Senior DevSecOps Engineer
We are seeking an experienced Senior DevSecOps Engineer who will work as part of a collaborative and high-performing team providing expertise to ensure integration of security best practices throughout the development and operations lifecycles.
HOW YOU WILL MAKE AN IMPACT
Design, build, and maintain secure, automated CI/CD pipelines to support application development and operations.
Implement and enforce security best practices, including secure configuration, dependency management, and deployment patterns.
Ensure end-to-end integration of security throughout the SDLC, including build, test, deploy, and runtime operations.
Design, deploy, operate, and maintain enterprise development security platforms, secure or vetted package management solutions, and SecOps CI/CD solutions.
Collaborate with development, security, and operations teams to embed security controls into pipelines, tooling, and workflows.
Provide advanced technical guidance and mentoring to development teams on secure coding practices, threat modeling, and vulnerability remediation.
Strengthen the overall application security posture by identifying risks, recommending solutions, and driving adoption of security standards and patterns.
Lead and participate in security-focused reviews, including design reviews, code reviews, and pipeline security assessments.
WHAT YOU’LL NEED TO SUCCEED
Active Top Secret security clearance with SCI eligibility.
Bachelor’s degree in a technology discipline (e.g., Computer Science, Information Technology, Engineering) and a minimum of 5 years of relevant experience; relevant experience may be substituted for education.
Strong, hands-on experience in the design, deployment, operations, and maintenance of:
Enterprise development security platforms.
Secure or vetted package management solutions.
SecOps CI/CD solutions supporting applications in hybrid environments, across multiple classification levels.
Significant hands-on experience in DevOps/DevSecOps engineering supporting enterprise applications.
Strong understanding and practical experience with:
CI/CD tools and pipelines.
Application security principles, secure coding practices, and common vulnerability types (e.g., OWASP Top 10).
Security integration in SDLC/CI-CD pipelines, dependency scanning, container scanning, and secrets management.
DoD 8140 IAT II compliant certification.
Proven ability to mentor and influence development teams on secure engineering practices.
Strong problem-solving skills and the ability to design scalable, reliable, and secure automation solutions.
Exceptional communication skills and the ability to build trusted relationships with technical and non-technical stakeholders.
Scheduled Weekly Hours:
40Travel Required:
Less than 10%Telecommuting Options:
OnsiteWork Location:
USA DC WashingtonAdditional Work Locations:
Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
Our Identity Verification Process:
As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during virtual interviews. We reserve the right to take your picture to verify your identity and prevent fraud. By proceeding, you authorize the collection, processing, and use of your biometric data for identity verification and security purposes.
About Our Work:
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.Join our Talent Community to stay up to date on our career opportunities and events atEqual Opportunity Employer / Individuals with Disabilities / Protected Veterans