Sr. IT DevSecOps Engineer

Senior DevSecOps Engineer – AWS GovCloud | GitLab CI/CD

Citizenship Required
Performance Period: Through End of Year (Strong Extension Potential)

Build Secure Cloud Pipelines That Power Mission-Critical Systems

We are seeking a Senior DevSecOps Engineer to design and operationalize secure, automated delivery pipelines within AWS GovCloud environments. This role is for a hands-on engineer who excels at integrating security into every layer of CI/CD while driving reliability, scalability, and speed.

You will architect GitLab-based DevSecOps pipelines, strengthen container security posture, and enable high-velocity application delivery without compromising compliance or governance.

If you thrive in high-security environments where automation, cloud infrastructure, and security engineering intersect — this role is built for you.

What You’ll Lead & Deliver

• Architect and manage GitLab CI/CD pipelines supporting secure AWS GovCloud deployments


• Design reusable CI/CD templates and optimize GitLab runners (including EKS-hosted runners)


• Embed security scanning (SAST, DAST, IAST, SCA, container scanning) directly into pipeline workflows


• Build and maintain hardened “golden” container images and enforce container security standards


• Implement GitOps deployment strategies using tools such as ArgoCD or Flux


• Optimize Terraform-based infrastructure as code for scalable, secure cloud provisioning


• Reduce deployment friction while increasing release confidence and security posture


• Partner with development teams to improve automation, testing, and code quality practices

Your Technical Expertise

DevSecOps & CI/CD

• Advanced GitLab knowledge (pipelines, runners, merge requests, issue tracking)


• Strong Git version control practices (branching, promotion, semantic release strategies)


• Experience building reusable CI/CD components or workflow templates

AWS Cloud (GovCloud Experience Preferred)

Hands-on experience with:

• EC2, Lambda, S3, EBS/EFS


• ECS and/or EKS (Kubernetes in AWS)


• SNS and CloudWatch


• Secure IAM and cloud-native monitoring practices

Containers & Kubernetes

• Docker image build, optimization, and lifecycle management


• Kubernetes orchestration, deployment strategies, and troubleshooting


• Container hardening and vulnerability management


• Managing container-based GitLab runners

Infrastructure as Code

• Advanced Terraform development and optimization


• Experience with CloudFormation, Ansible, or similar IaC tools

Security Automation

• Integrating SAST, DAST, IAST, and SCA into CI/CD pipelines


• Container scanning tools (Trivy, Prisma/Twistlock, Neuvector, etc.)


• Automated remediation workflows


• Incorporating linting, unit testing, and performance testing into pipelines

Scripting & Systems

• Strong Python and/or Bash scripting


• Comfortable navigating and administering Linux environments


• Collaborative mindset for paired engineering sessions

Certifications (Preferred, Not Required)

• GitLab Certification


• AWS Certification

What Sets You Apart

• You think in systems and automation, not manual processes


• You proactively eliminate bottlenecks and security gaps


• You design solutions that balance velocity with compliance


• You enjoy mentoring developers on secure DevOps practices

Why Join

• Work on secure, high-impact cloud infrastructure


• Own architecture decisions in a GovCloud environment


• Long-term contract stability with strong extension potential


• Collaborate with senior engineers on mission-driven systems

If you are a DevSecOps leader who believes security should accelerate delivery — not slow it down — we want to speak with you.