Senior DevSecOps Platform Engineer

MANTECH

seeks a motivated, career and customer-oriented Sr. Dev Sec Ops  Platform Engineer to join our team in Lexington Park, MD
. This is an onsite position.

The Senior Dev Sec Ops  Platform Engineer builds and maintains the secure internal developer platforms (IDP), automation, and infrastructure required to ship software reliably. They will bridge software development, operations, and cybersecurity by embedding automated security controls into continuous integration/continuous deployment (CI/CD) pipelines and Infrastructure as Code (IaC).

• Platform Engineering:
  Design, build, and maintain scalable internal developer platforms, Hybrid Cloud environments (VMWare, Open Shift, AWS, Azure, GCP), and container orchestration systems (Kubernetes).
• Dev Sec Ops :
  Building and maintaining CI/CD pipelines for a large enterprise using Jenkins, Git Lab, or similar tools.
• Security Automation:
  Wire security with a shift-left approach to automate vulnerability scanning, secrets detection, and dependency checks within the CI/CD pipeline.
• Infrastructure as Code (IaC):
  Codify policies and provision resources programmatically using tools like Terraform, Ansible, or Bicep to enforce least-privilege access and secure configurations.
• Monitoring & Observability:
  Implement logging, monitoring, and alerting systems to detect misconfigurations or anomalies in real-time.
• Collaboration & Advocacy:
  Partner with software and security teams to resolve vulnerabilities, promote a culture of shared security responsibility, and improve developer experience.

• Master’s degree in Computer Science, Engineering, Math, or a related field;
  Bachelor’s Degree (with similar curriculum focus) plus 4 years additional work experience may be substituted.
• 8+ years of experience in software systems development, Dev Ops/Dev Sec Ops , Site Reliability Engineering (SRE), or platform engineering.
• Proficient in major cloud providers (AWS, Azure, GCP) and Infrastructure as Code (IaC) utilizing Terraform and Ansible.
• Extensive experience building robust CI/CD pipelines (Harness, Jenkins, Git Lab) integrated with security tooling (SAST, DAST, SCA).
• Expertise in Docker and Kubernetes, including specialized container environments like Alpine Linux.
• Skills with tool integration and script automation using Python, Go, and Bash within Linux (RHEL, Ubuntu, CentOS) and Windows environments.
• Understanding of risk and compliance frameworks, including SOC2 and FedRAMP/DoD.

• Knowledge of integrating generative AI technologies into Dev Sec Ops  lifecycle.
• Tools
  
  Experience:
  
  Proficiency with monitoring tools such as Dynatrace, Datadog, New Relic, Grafana, Splunk, Solar Winds, App Dynamics.

• Active Secret clearance required with the ability to upgrade to Top Secret.

• Must be able to remain in a stationary position 50% of the time.
• The person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations and must be able to exchange accurate information in these situations.