remote

DevSecOps Engineer Journeyman

DevSecOps Engineer Journeyman position — see original posting for full details.

About the role

Responsibilities

Peraton is seeking a DevSecOps Engineer (Journeyman) to support the MODES III program supporting Military Community and Family Policy (MC&FP). In this role, the selected candidate will implement, maintain, and secure CI/CD pipelines, infrastructure automation, and deployment tooling to support the program application and platform delivery in AWS GovCloud, ensuring DevSecOps practices are embedded in development lifecycles. This position is remote and requires an active Secret clearance.

JOB DESCRIPTION

Implement, maintain, and secure CI/CD pipelines, infrastructure automation, and deployment tooling to support MODES III application and platform delivery in AWS GovCloud, ensuring DevSecOps practices are embedded in development lifecycles.
Build and operate CI/CD pipelines (Jenkins, GitLab CI, CodeBuild/CodePipeline), integrating automated unit/integration tests, static/dynamic security scans (SAST/DAST), and artifact promotion gates to enforce secure, repeatable releases,.
Implement Infrastructure as Code (IaC) templates (Terraform/CloudFormation) and automated environment provisioning for dev/test/pre prod/prod, enabling consistent, auditable cloud environments aligned with DoD CC SRG requirements.
Containerize applications and manage orchestration support (Docker, EKS/ECS); automate application deployments, health checks, rollbacks, and canary/cutover strategies as part of release workflows.
Integrate security into pipelines: automate hardening (STIG/SRG), vulnerability scanning (ACAS/NESSUS/SCAP), secrets management, and coordinate remediation workflows with CCM and security teams to support RMF/ATO artifact capture.
Implement observability and telemetry: configure centralized logging, metrics, and alerting (CloudWatch, Splunk, ELK) and ensure pipeline/test results and service health feed MODES III dashboards for near real time monitoring.
Support backup/DR automation and validation: implement automated snapshot, backup, and recovery orchestration for cloud resources; participate in COOP/DR exercises and validate recovery playbooks.
Collaborate with developers, QA, DBAs, and cloud architects to codify deployment patterns, optimize pipelines, and reduce lead time for changes; mentor junior engineers on secure automation best practices.
Familiar with: Terraform, CloudFormation, Ansible, Jenkins, GitLab CI, Tekton, CodePipeline, XLRelease, Docker, Kubernetes (EKS)/OpenShift, Helm, Trivy, SonarQube, Checkmarx, Tenable/ACAS, Splunk, CloudWatch, Prometheus, Grafana, ELK/OpenSearch, Artifactory/Quay/Nexus, Python/Bash/PowerShell

Qualifications

REQUIRED QUALIFICATIONS

Active Secret clearance required.
Experience / Education: 5 years relevant experience with BS/BA degree or 3 years with MS/MA or 1 year with PhD or 9 years w/o a degree ot 7 years

About the role

Responsibilities

JOB DESCRIPTION

Implement, maintain, and secure CI/CD pipelines, infrastructure automation, and deployment tooling to support MODES III application and platform delivery in AWS GovCloud, ensuring DevSecOps practices are embedded in development lifecycles.
Build and operate CI/CD pipelines (Jenkins, GitLab CI, CodeBuild/CodePipeline), integrating automated unit/integration tests, static/dynamic security scans (SAST/DAST), and artifact promotion gates to enforce secure, repeatable releases,.
Implement Infrastructure as Code (IaC) templates (Terraform/CloudFormation) and automated environment provisioning for dev/test/pre prod/prod, enabling consistent, auditable cloud environments aligned with DoD CC SRG requirements.
Containerize applications and manage orchestration support (Docker, EKS/ECS); automate application deployments, health checks, rollbacks, and canary/cutover strategies as part of release workflows.
Integrate security into pipelines: automate hardening (STIG/SRG), vulnerability scanning (ACAS/NESSUS/SCAP), secrets management, and coordinate remediation workflows with CCM and security teams to support RMF/ATO artifact capture.
Implement observability and telemetry: configure centralized logging, metrics, and alerting (CloudWatch, Splunk, ELK) and ensure pipeline/test results and service health feed MODES III dashboards for near real time monitoring.
Support backup/DR automation and validation: implement automated snapshot, backup, and recovery orchestration for cloud resources; participate in COOP/DR exercises and validate recovery playbooks.
Collaborate with developers, QA, DBAs, and cloud architects to codify deployment patterns, optimize pipelines, and reduce lead time for changes; mentor junior engineers on secure automation best practices.
Familiar with: Terraform, CloudFormation, Ansible, Jenkins, GitLab CI, Tekton, CodePipeline, XLRelease, Docker, Kubernetes (EKS)/OpenShift, Helm, Trivy, SonarQube, Checkmarx, Tenable/ACAS, Splunk, CloudWatch, Prometheus, Grafana, ELK/OpenSearch, Artifactory/Quay/Nexus, Python/Bash/PowerShell

Qualifications

REQUIRED QUALIFICATIONS

Active Secret clearance required.
Experience / Education: 5 years relevant experience with BS/BA degree or 3 years with MS/MA or 1 year with PhD or 9 years w/o a degree ot 7 years

DevSecOps Engineer Journeyman

About the role

DevSecOps Engineer Journeyman

About the role

Skills