DevSecOps Architect; Remote

Dev Sec Ops  Architect

Tier One Technologies is seeking a Dev Sec Ops  Architect to design and build a robust, self-healing Dev Sec Ops  ecosystem that balances rapid deployment with uncompromising security standards. The role focuses on leveraging Artificial Intelligence to automate threat detection, enhance code reviews, and secure AI-native applications for our direct U.S. Government client.

This remote contract-to-hire position will be originated in Falls Church, VA.

SELECTED CANDIDATES WITHOUT REQUIRED CLEARANCE WILL BE SUBJECT TO A FEDERAL GOVERNMENT BACKGROUND INVESTIGATION TO RECEIVE IT.

• Lead the evolution of the software delivery lifecycle by embedding security into every stage of the CI/CD pipeline.
• AI-Enhanced Pipeline Security:
  Architect and maintain automated CI/CD pipelines that utilize AI/ML models for static and dynamic analysis (SAST/DAST) to identify complex vulnerabilities that traditional rule-based tools miss.
• Securing AI Workflows:
  Design security frameworks for the end-to-end AI lifecycle, including securing data ingestion, protecting model weights, and implementing "Guardrail" architectures for Large Language Models (LLMs).
• Intelligent Automation:
  Develop AI-driven orchestration (SOAR) to automate the triage and remediation of security findings, reducing manual overhead for engineering teams.
• Policy as Code (PaC):
  Implement enterprise-wide governance using tools like Open Policy Agent (OPA) to enforce security compliance automatically across multi-cloud environments.
• Threat Modeling & Red Teaming:
  Conduct advanced threat modeling for cloud-native applications, specifically accounting for AI-specific attack vectors like model inversion or data poisoning.
• Developer Empowerment:
  Create self-service security tools and "Golden Paths" that allow developers to deploy securely without friction, fostering a proactive security culture.
• Shift Left:
  Achieve 90% automated security coverage across all production-bound code.
• Mean Time to Remediate (MTTR):
  Utilize AI to reduce vulnerability remediation time by 40% within the first year.
• Innovation:
  Stay at the forefront of the "AI for Security" and "Security for AI" movements

• A degree from an accredited College/University in the applicable field of services is required. If the degree is not in the applicable field, then four additional years of related experience is required.
• 10+ years of overall IT experience, with 5+ years dedicated to Dev Sec Ops  leadership in high-scale environments.
• AI expertise:
  Proven track record of implementing AI/ML to solve operational or security challenges.
• Dev Ops & Infrastructure requirements:
  Expert-level experience with Kubernetes, Terraform/Pulumi, and cloud platforms (AWS, Azure, or GCP).
• Security Tooling requirements:
  Mastery of integrating SAST, DAST, SCA, and Secret Scanning into Git Hub Actions, Git Lab CI, or Jenkins.
• AI/ML Security requirements:
  Hands-on experience securing MLOps pipelines and implementing security for AI-integrated APIs.
• Programming requirements:
  Proficiency in Python, Go, or Bash for building custom security automation and AI-driven scripts.
• Observability requirements:
  Deep knowledge of eBPF, Prometheus, and AI-powered logging/monitoring tools (e.g., Dynatrace or Datadog).
• Strong ability to bridge the gap between "Speed of Dev Ops" and "Rigors of Security" while communicating clearly with executive leadership.
• Excellent communication skills.
• Be able to pass a drug screening, criminal history, and credit checks.
• Must be a US Citizen or have permanent residence status (Green Card).
• Must be able to obtain a Position of Public Trust Clearance.
• Must have lived in the United States for the past 5 years.
• Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)