Sr. DevSecOps Engineer

Onsite in washington, DC

Our client seeks a Sr. DevSecOps Engineer to design, secure, and operate CI/CD pipelines and cloud infrastructure across classified environments. You will lead automation with GitLab CI, Jenkins, and Infrastructure as Code, enforce STIG compliance, and guide teams on secure delivery practices. The role includes advanced Linux troubleshooting, mentoring junior engineers, and advising on ATO-aligned security controls in AWS.

This is a full-time, permanent opportunity, offering a competitive salary and comprehensive benefits package. Qualified applicants must be willing and able to work on a w2 basis.

Salary: $174,000 - $220,000/ yr. w2

Responsibilities

• Collaborate with customers and internal teams to design and implement automated technical solutions across multiple classification environments.
• Develop CI/CD pipelines from scratch in GitLab CI and Jenkins with integrated security scanning and STIG compliance validation.
• Provide guidance to development teams on pipeline troubleshooting and DevSecOps best practices.
• Create and maintain Infrastructure as Code templates using CloudFormation to build secure, highly available DevSecOps tooling across AWS environments including GovCloud, C2S, and TC2S.
• Ensure STIG compliance across toolchains and infrastructure and mentor junior engineers on IaC best practices.
• Lead advanced troubleshooting by analyzing system and application logs with Linux command-line tools and conduct root cause analysis.
• Develop mitigation strategies for service degradation and operational incidents.
• Advise development teams on secure coding, STIG compliance, vulnerability remediation, and ATO-aligned practices.
• Mentor junior engineers through code reviews, technical guidance, documentation, and knowledge sharing.

Experience Requirements

• Active TS/SCI Clearance with CI poly.
• 10+ years as a DevSecOps Engineer or similar with emphasis on infrastructure automation, scalability, and reliability.
• Expertise with DevOps practices, CI/CD pipelines, containerization, and automation tools such as Jenkins, GitLab CI/CD, Artifactory, SonarQube, and Prisma Cloud.
• Proven delivery of DevSecOps services across multiple classified domains.
• Expert understanding of AWS services such as EC2, S3, IAM, and RDS, and secure cloud architecture.
• Strong experience with Infrastructure as Code tools such as Terraform, CloudFormation, or Ansible.
• Strong scripting experience with Python and Bash in Linux environments such as RHEL or Oracle Linux.
• Minimum IAT Level 2 certification such as CompTIA Security+, GSEC, or SSCP.

Education Requirements

• Minimum IAT Level 2 certification (e.g., CompTIA Security+, GSEC, SSCP).

Recruitment Transparency Notice

Eliassen Group values transparency in our recruitment practices. Please be advised that Eliassen Group utilizes artificial intelligence (AI) tools as part of its initial application screening and hiring process. You may receive email and SMS notifications from the Eliassen Virtual Recruiting Team (noreply@eliassen.com, 781-808-2924) inviting you to complete a brief voice screening as part of your application process. These tools assist our hiring teams in different ways, including but not limited to, assistance in reviewing application materials to help identify candidates whose qualifications most closely match the requirements of the position. All AI-assisted evaluations and responses are reviewed by human recruiters before any hiring decisions are made. The use of AI in our process is intended to support fairness, efficiency, and consistency, and Eliassen Group takes measures to prevent bias or discrimination in connection with its hiring practices. By proceeding, you acknowledge, agree, and consent to Eliassen Group’s use of these tools, including AI tools, as part of the application and hiring process.

Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality. If anyone reaches out to you about an open position connected with Eliassen Group, please ensure that you are working directly with us by confirming the following:

· When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.

· Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group.

If you have any indication of fraudulent activity, please contact fraud@eliassen.com.

About Eliassen Group

Eliassen Group is a strategic consulting firm that helps organizations reach further and achieve more through our technology, business advisory, and life sciences solutions. For nearly 40 years, we have combined exceptional people, deep domain expertise, and intelligent capabilities to expand our clients’ capacity and accelerate meaningful outcomes. We are driven by a purpose to positively impact the lives of our employees, clients, consultants, and the communities we serve.

Eliassen is committed to building a diverse and inclusive team from a variety of backgrounds, perspectives, and skills. We are an Equal Opportunity and Affirmative Action Employer and all employment decisions are based on merit, performance, and business needs. Eliassen does not discriminate on the basis of race, color, gender identity or expression, sexual preference or orientation, sex (including pregnancy, childbirth, and related medical conditions), marital status, creed, religion, physical or mental disability, genetic information, military or veteran status, age, ancestry, national origin, citizenship status, prohibited criminal record inquiries of applicants and employees, or any other category protected by federal, state, or local laws.