Azure DevOps Engineer Security Clearance

Position: Azure DevOps Engineer with Security Clearance
Overview At Systems Planning and Analysis, Inc. (SPA), we tackle the most complex national security challenges with high-impact technical solutions. With over 50 years of proven expertise and a track record of consistent growth, we are recognized for driving innovation and delivering value to our government customers in the U.S. and beyond. An exceptionally talented and collaborative team powers our success, united in producing Results that Matter .

When you join us, you'll find opportunities, meaningful challenges, and a shared commitment to mission success. Come work with the best and make a difference where it truly counts. We seek a skilled Azure Dev Ops Engineer with Git Lab CI/CD platform support expertise to design, implement, and manage robust Dev Ops pipelines for a secure, scalable cloud environment. This role will focus on automating deployments, streamlining software delivery, and ensuring that all CI/CD processes align with regulatory compliance frameworks such as NIST SP 800-53, CMMC, and FedRAMP.

The ideal candidate will have hands-on experience with Git Lab CI/CD and Azure cloud infrastructure and strong problem-solving and collaboration skills. Responsibilities
* CI/CD Pipeline Design and Management
* Design, implement, and maintain CI/CD pipelines using the Git Lab CI/CD platform to support the full application build lifecycle, ensuring smooth integration and deployment of applications.
* Develop and enforce best practices for source code management, branch strategies, and Git Lab runner configurations.
* Collaborate with development teams to identify key pipeline requirements and workflows, enabling continuous integration, automated testing, and efficient deployments.
* Ensure pipelines are scalable, efficient, and capable of supporting parallel builds, automated rollbacks, and multi-environment deployments.
* Azure Cloud Infrastructure Support
* Manage and optimize cloud resources in Azure, including virtual machines, networking, and storage to support Dev Ops processes.
* Implement Infrastructure as Code (IaC) using Terraform, ARM templates, or Bicep to automate the provisioning and management of Azure resources.
* Collaborate with cloud architects to ensure CI/CD processes align with Azure Landing Zone (ALZ) principles.
* Security and Compliance
* Implement security practices within CI/CD pipelines, such as secret management, least-privilege access controls, and identity integration with Azure AD.
* Implement Software Composition Analysis (SCA) & SBOM Integration:
Integrate and manage continuous scanning tools (e.g., OWASP Dependency Check, Dependency-Track, Cyclone

DX) to automatically detect and address vulnerable open-source dependencies and maintain accurate software bill of materials (SBOMs).
* Implement Static Application Security Testing (SAST):
Implement SAST tools (e.g., Sonar Qube, Checkmarx) within the CI/CD pipeline to detect security vulnerabilities, code smells, and compliance issues early in the development lifecycle.
* Implement Container Security:
Integrate container image scanning tools (e.g., Trivy, Aqua Security) to identify and remediate vulnerabilities in base images, configurations, and dependencies before production deployments.
* Implement Secrets Detection and Management:
Automate secrets detection and management using secure vaulting solutions (e.g., Hashi Corp Vault, Azure Key Vault) to prevent hard-coded secrets and unauthorized access during builds.
* Automated Compliance and Policy Enforcement:
Implement automated compliance checks and enforce security policies directly within Git Lab CI/CD pipelines, generating actionable reports to ensure adherence to standards like NIST SP 800-53, CMMC, and OWASP.
* Monitoring and Optimization
* Set up and manage Git Lab monitoring, logging, and performance optimization tools.
* Use tools like Azure Monitor, Log Analytics, and Application Insights to monitor deployment health and optimize pipeline performance.
* Continuously improve pipeline efficiency and deployment speed while minimizing downtime.
* Collaboration and Support
* Work closely with development, QA, and security teams to integrate their workflows into the Git Lab CI/CD process.
* Provide technical support for developers and teams and assist with CI/CD Pipeline Troubleshooting:
Investigate and resolve CI/CD pipeline issues, including build failures, deployment errors, or security-related blockages, to minimize downtime and disruption to development teams.
* Provide Incident Response and Continuous Improvement:
Lead root cause analysis and post-mortem reviews for CI/CD incidents and outages, documenting lessons learned and implementing process improvements to prevent future occurrences.
* Provide

Cross-functional collaboration:

Work closely with development, security, and operations teams to continuously enhance CI/CD workflows, addressing emerging security threats and optimizing delivery performance.
* Automation and Integration
* Develop and maintain…