DevSecOps Engineer

Dev Sec Ops  Engineer

Today’s dynamic technology landscape demands constant and rapid innovation. To facilitate this transformation, we must ensure continuous integration and application development. We need an experienced Dev Ops engineer who’s eager to design, test, and program critical applications that transform workflows and have real impact. With access to continuing education resources, tuition assistance, and tech development programs, you’ll keep your skills sharp at the leading edge of tech.

• Apply Dev Sec Ops  expertise to integrate and enhance security into software delivery pipelines.
• Serve as a technical expert, using secure development practices and delivering continuous improvement across the CI/CD ecosystem.
• Evolve and secure CI/CD pipelines by integrating automated security tools such as SAST, DAST, SCA, and container scanning to meet DoD requirements and reduce operational risk.
• Refine vulnerability detection thresholds, tune scanners, reduce false positives, and optimize remediation workflows in Dev Sec Ops  pipelines.
• Harden Infrastructure-as-Code templates, enforce policy-as-code across environments, conduct risk assessments, and contribute to system security plans (SSPs) and continuous authority to operate (ATO) efforts.
• Collaborate with development, operations, and security teams to support secure software delivery.
• Monitor pipeline activity for anomalies and assist in responding to security incidents.
• Champion Zero Trust principles and drive adoption of secure‑by‑design methodologies across the software development lifecycle.

• 5+ years of experience in cybersecurity engineering and Dev Sec Ops  in federal or defense environments employing IaC/CaC, CI/CD, and SSDLC concepts.
• 3+ years of scripting experience, including Python or Bash and automation frameworks.
• 2+ years of experience implementing cybersecurity solutions in AWS cloud and container orchestration, including Kubernetes.
• Knowledge of best practice cybersecurity and threat‑based cybersecurity frameworks, including AI or ML security best practices.
• Knowledge of NIST SP 800‑53 controls, RMF compliance, eMASS, STIG Manager, STIG Viewer, and SCAP tools.
• Knowledge of Agile and Change Management methodologies.
• Top Secret clearance.
• Bachelor’s degree in Cybersecurity or Computer Science.
• Security+ certification.

• 3+ years of experience reviewing code samples and applying whitelisting or exemption processes.
• Experience developing Zero Trust security solutions for Dev Sec Ops  pipelines.
• Experience evaluating security tools and assessing fit for inclusion in development or operational environments.
• Excellent verbal, technical writing, and documentation skills.
• TS/SCI clearance.
• Master’s degree in an IT or Cybersecurity field.
• AWS Solutions Architect, AWS Security, or CISSP certification.

Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information;
Top Secret clearance is required.

Salary range: $77,600.00 to $ (annualized USD). The range reflects the typical salary for this position and is one component of Booz Allen’s total compensation package.

Benefits include health, life, disability, financial, and retirement advantages; paid leave; professional development; tuition assistance; work‑life programs; dependent care; and a recognition awards program that acknowledges superior performance.

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran, or any other status protected by applicable federal, state, local, or international law.