DevSecOps Engineer; On-site

Norfolk, United States | Posted on 10/14/2025

Sandy Mac Evolution LLC is a Veteran-Owned company dedicated to connecting top talent with meaningful opportunities.

This opportunity is open only to individuals who currently hold an active U.S.Department of Defense (DoD) or NATO security clearance at the required level.

Engagement will be under a 1099 / Business-to-Business (B2B) contractualarrangement — not a W-2 employment position.
As this is a B2B / 1099 engagement, benefits such as health insurance, paidtime off, and retirement plans are not provided. Contractors are responsible for managing their own taxes, insurance, and other business obligations in accordance with federal and state requirements.

A highly skilled Dev Sec Ops  engineer with a degree in IT,engineering, or computer science, and strong experience designing,implementing, and securing CI/CD pipelines in enterprise or defenseenvironments. The ideal candidate has a deep understanding of secure software development life cycles, automation, containerization (Kubernetes, Docker), andcloud-native technologies. They are proficient in applying security testing,vulnerability management, and compliance frameworks throughout the developmentpipeline.

This individual must be able to operate within NATO secure environments,ensuring software and infrastructure meet strict accreditation and certification standards. Previous NATO, defense, or government project experience is highly desirable, along with proven ability to collaborate inmultinational teams. An active NATO Secret clearance is required.

Search Focus:
On-site Dev Sec Ops  engineers with NATO or defense project experience and hands-on security integration in Dev Ops pipelines.

• Deploy and operate containerized services usingorchestration frameworks to ensure scalability and resilience
• Automate infrastructure through Infrastructure as Code (IaC) to provide consistent and repeatable environments
• Deploy and monitor workloads in cloud environments (AWS, Azure, Google Cloud, VMware, Open Stack)
• Implement site reliability engineering (SRE) andobservability practices to ensure resilience, monitoring, logging, metrics, anddistributed tracing
• Support high-throughput and service-orientedarchitectures, ensuring resilient and scalable deployments
• Deliver incremental capabilities in Agile andDev Sec Ops  environments following frameworks such as Scrum, SAFe, or Kanban
• Design and manage secure networking and servicemeshes (TLS, Istio, Linkerd, API gateways) to ensure encrypted and reliableservice-to-service communication
• Apply zero-trust principles and complianceautomation to enforce security policies and validate system compliance
• Manage identity and access using secure methodsfor secrets, tokens, certificates, and least-privilege access control

• Minimum 4 years of experience with containerization and orchestration (Docker, Kubernetes, Open Shift)
• Minimum 4 years of experience in designing and maintaining CI/CD pipelines with automated testing and security validation
• Experience with Infrastructure as Code(Terraform, Ansible, Helm, Pulumi)
• Experience deploying and securing workloads inhybrid/public cloud environments (AWS, Azure, Google Cloud, VMware, Open Stack)
• Experience implementing site reliability engineering and observability practices (Prometheus, Grafana, ELK/Loki,Open Telemetry)
• Experience implementing scalable, resilient,high-throughput systems and service-oriented architectures
• Experience designing and managing securenetworking and service mesh (TLS, Istio, Linkerd, API gateways)
• Experience applying zero-trust principles and compliance automation (OPA, Kyverno, SBOM, CIS benchmarks)
• Experience managing secrets and access policiesusing modern IAM solutions (Vault, AWS KMS, Azure Key Vault, RBAC/ABAC)

Asthis is a B2B / 1099 engagement, benefits such as health insurance, paid timeoff, and retirement plans are not provided. Contractors are responsible for managing their own taxes, insurance, and other business obligations in accordance with federal and state requirements.