Senior DevSecOps Engineer

Overview

Auria is looking to hire a Senior Dev Sec Ops  Engineer to support the C2

BMC program. This role is ONSITE in Colorado Springs, CO.

The Command and Control, Battle Management, and Communications (C2

BMC) program is a key component of the Missile Defense System. It enables the U.S. president, the secretary of defense, and combatant commanders at strategic, regional, and operational levels to plan ballistic missile defense operations, monitor the battle, and dynamically control networked sensors and weapon systems to achieve global and regional mission goals. C2

BMC supports layered missile defense capabilities and serves as a force multiplier by networking, integrating, and synchronizing autonomous sensor and weapon systems and operations globally and regionally to improve performance. C2

BMC is essential for all ground and flight tests that verify and demonstrate current and future missile defense system capabilities.

• Infrastructure-as-Code (IaC) Development
• Design, write, and maintain IaC templates for Windows and Linux platforms using:
  Ansible, Packer, Python, and other scripting languages
• Ensure all code is version-controlled, reviewed, and compliant with C2
  
  BMC's security standards
• Fully automated Software Stack
• Build and operate an end-to-end automation pipeline that provisions, hardens, and configures systems for the C2
  
  BMC program
• Integrate automated testing, vulnerability scanning, and compliance verification into the stack
• STIG Baseline Hardening Automation
• Develop reusable Ansible playbooks and custom scripts that automatically apply the DoD STIG and baseline to C2
  
  BMC systems
• Track and remediate any compliance drift on an ongoing basis
• Configuration-Management Baseline
• Establish a single source of truth for all configuration data (inventory, variables, and secrets) that feeds Ansible automation
• Implement secure secret management (Vault, Azure Key Vault, AWS Secrets Manager, etc.) and enforce idempotent deployments
• Tooling & Technology refresh
• Evaluate, prototype, and stand up new tools, containers, and services to keep C2
  
  BMC ahead of emerging technological trends
• Provide documentation, training, and knowledge transfer for any new capabilities introduced to the team
• 3-5 years of hands-on Dev Sec Ops /Dev Ops experience in a high-security, mission-critical environment
• Proven ability to write clean, maintainable code and familiarity with the software development lifecycle (SDLC)
• Deep knowledge of Linux (RHEL, CentOS, Ubuntu) and/or Windows Server (2016/2019/2022) administration, including hardening and patch management
• Direct experience implementing security baselines (STIG, CIS, NIST), vulnerability remediation, or hardening automation
• Basic network fundamentals, including an understanding of TCP/IP, VLANs, routing, firewalls, VPNs, and basic network troubleshooting

• Mission-Driven Professional: Collaborative contributor motivated by the opportunity to develop cutting-edge solutions that protect and serve both the nation and the world.
• Education & Experience: A Bachelor's Degree in Computer Science, Systems Engineering, Software Engineering, Engineering, Mathematics, Physics, or a related field from an accredited university is preferred, along with 8 years of experience; or a Master's degree (preferred) in a related field with 6 years of relevant work experience; or PhD in a related discipline with 4 years of relevant work experience
• Security Certification & Clearance: Applicants must have a current, active DoD 8140 certification at IAT Level II or higher at the time of application, and must maintain it throughout the contract; applicants must have a current, active in-scope DoD-issued Secret security clearance at the time of application, which is required to start
• Technical Proficiencies: Ansible - Advanced proficiency in playbook development, role creation, inventory management, and the Ansible Automation Platform
• Containerization: Strong experience building, packaging, and deploying containerized applications (Docker, Podman) and orchestrating them with Kubernetes or Open Shift
• Scripting
  
  Languages:
  
  Expert-level scripting in Python, Bash, and/or Power Shell for automation, data manipulation, and API integration
• CI/CD Platforms: Hands-on with Git Lab and CI/CD (Jenkins, Azure Dev Ops, Git Hub Actions) to design pipelines that include unit tests, security scans, and automated deployments
• Version Control: Mastery of Git & workflows, pull-request reviews, branching strategies, and code-ownership practices
• Infrastructure-as-Code: Proficiency with Terraform/Packer for platform-agnostic resource provisioning
• Monitoring & Observability: Experience configuring telemetry (Prometheus, Grafana, ELK/EFK stacks, Splunk) and alerting in automated environments
• Secret & Credential Management: Familiarity with Hashi Corp Vault, Azure Key Vault, AWS Secrets Manager, or equivalent
• Compliance Automation: Ability to script and integrate compliance checks (OpenSCAP, InSpec, Chef InSpec) into the…