Senior DevSecOps Engineer

Overview

At Credence, we support our clients' mission‑critical needs, powered by technology. We provide cutting‑edge solutions, including AI/ML, enterprise modernization, and advanced intelligence capabilities, to the largest defense and health federal organizations. Through partnership and trust, we increase mission success for forward‑fighters and secure our nation for a better future.

We are privately held, are repeatedly recognized as a top place to work, and have been on the Inc. 5000 Fastest Growing Private Companies list for the last 12 years. We practice servant leadership and believe that by focusing on the success of our clients, team members, and partners, we all achieve greater success.

We have an immediate need for a highly skilled Mid and Senior leveled Dev Sec Ops  Engineer(s) to support federal programs hosted on AWS Gov Cloud. This hybrid role in multiple locations – the primary role in McLean, VA or Dayton, OH – requires expertise in Dev Sec Ops  best practices, cloud automation, security compliance, and continuous integration/continuous deployment (CI/CD) to enhance the security, scalability, and efficiency of mission‑critical applications.

$/yr – $/yr

• AWS Gov Cloud Architecture & Management:
  Design, implement, and maintain secure, scalable, and compliant AWS Gov Cloud environments for DoD and Civilian agency applications
• Dev Sec Ops  Pipeline Development:
  Build and optimize CI/CD pipelines using tools like Git Lab CI/CD, Jenkins, AWS Code Pipeline, and Terraform to automate deployments and security compliance
• Security & Compliance:
  Ensure adherence to Federal cybersecurity frameworks (e.g., NIST 800‑171, NIST 800‑53, RMF, FedRAMP, Zero Trust). Implement STIGs, security baselines, and automated security scanning (SAST/DAST)
• Infrastructure as Code (IaC):
  Automate infrastructure provisioning and configuration management using Terraform, Cloud Formation, and Ansible
• Containerization & Orchestration:
  Deploy and manage Docker containers and Kubernetes clusters in AWS Gov Cloud, leveraging services like Amazon EKS, ECS, and Fargate
• Monitoring & Incident Response:
  Implement AWS Cloud Watch, AWS Security Hub, Guard Duty, Splunk, or ELK for proactive monitoring, logging, and compliance reporting
• Automation & Scripting:
  Develop automation scripts using Python, Bash, or Power Shell to improve deployment efficiency and security enforcement
• Collaboration & Knowledge Sharing:
  Work closely with software developers, cybersecurity teams, and cloud engineers to integrate security and automation into the software development lifecycle (SDLC)
• Mid level requires 5+ years of hands‑on experience in Dev Sec Ops , Cloud Engineering, or Infrastructure Automation roles
• Senior level requires 7+ years of hands‑on experience in Dev Sec Ops , Cloud Engineering, or Infrastructure Automation roles
• Strong expertise in AWS Gov Cloud services, security configurations, and compliance frameworks
• Experience with CI/CD tools (Git Lab CI/CD, Jenkins, AWS Code Pipeline, or similar)
• Hands‑on experience with Infrastructure as Code (IaC) using Terraform, Cloud Formation, and Ansible
• Proficiency in containerization and orchestration (Docker, Kubernetes, EKS, ECS, Fargate)
• Strong understanding of AWS security services (AWS IAM, Guard Duty, Security Hub, AWS KMS, AWS WAF, AWS Config, AWS Secrets Manager)
• Knowledge of federal cybersecurity frameworks (RMF, NIST 800‑171/53, STIGs, Zero Trust)
• Experience implementing automated security testing (SAST, DAST, vulnerability scanning, SBOM management)
• Proficiency in scripting (Python, Bash, Power Shell) for automation and security enforcement
• Security+, AWS Certified Security
• US citizenship with the ability to obtain successful DoD SECRET security clearance required

• HQ – McLean, VA (Tysons Corner) – Hybrid
• Dayton, OH (Wright Patterson AFB) – On‑site

Mid‑Senior level

Full‑time

Information Technology

IT Services and IT Consulting