Sr. DevOps Software Developer

We are seeking a Dev Ops Software Developer experienced in Build and Release Engineering, Secure Software Development, and Software Supply Chain Risk Management (SCRM) in alignment with ISO 27001, NIST SP 800-161, and NIST SP 800-171 standards.

This role unites software engineering, automation, and compliance, building secure, traceable, and compliant software pipelines across hybrid (on-prem + cloud) environments. You will develop tools and frameworks that ensure software integrity, repeatability, and regulatory alignment from source code to deployment.

• Design, develop, and maintain automated build and release pipelines for multi-tier applications.
• Manage version control systems and branching strategies; maintain artifact repositories (e.g., Jfrog Artifactory).
• Develop and optimize build scripts and automation tools using Python, Bash, CMake, or Gradle.
• Implement build verification, automated testing, and code signing for secure releases.
• Ensure traceability and reproducibility of builds

• Architect and maintain CI/CD pipelines with Jenkins, Git Lab CI, or Git Hub Actions.
• Use Infrastructure as Code (IaC) tools such as Terraform, Ansible, or Terraform for consistent infrastructure deployment.
• Automate environment configuration, monitoring, and policy enforcement to meet compliance standards.
• Integrate security and compliance validation into CI/CD workflows.
• Support hybrid deployments across on-prem, virtualized, and cloud environments

• Manage and maintain on-premises servers and virtualization platforms (VMware vSphere/ESXi, KVM, or Open Stack).
• Automate provisioning and orchestration for VMs, containers, and networks.
• Monitor system performance, resource utilization, and capacity planning.
• Implement network segmentation, secure connectivity, and identity/access controls in compliance with ISO 27001 Annex A controls.
• Participate in infrastructure hardening, patch management, and disaster recovery planning

• Implement secure software supply chain practices per NIST SP 800-161r1 and NIST SP 800-171.
• Maintain and validate Software Bills of Materials (SBOMs) using tools like Black Duck
• Identify and mitigate vulnerabilities in open-source and third-party dependencies.
• Enforce artifact provenance, cryptographic integrity checks, and chain-of-custody documentation across builds.
• Contribute to secure procurement and vendor assurance processes under ISO 27001 and NIST frameworks.

• Implement and maintain compliance with ISO 27001, NIST SP 800-161 and NIST SP 800-171
• Integrate security baselines, vulnerability management, and code assurance tools into the Dev Ops workflow.
• Maintain audit trails, change records, and compliance documentation for ISO/NIST audits.
• Collaborate with QA, Security, and Compliance teams to continuously improve the secure development lifecycle (SDLC).

• Bachelor’s degree in Computer Science, Software Engineering, or related field, or equivalent experience.
• 4–8+ years in Dev Ops, Build/Release Engineering, or Software Development roles.
• Strong understanding of SDLC, Dev Sec Ops , and CI/CD principles.
• Proficiency in programming:
  Python, Bash, Go, or JavaScript.
• Experience with CI/CD platforms (Jenkins, Git Lab CI, Azure Dev Ops) and IaC tools (Terraform, Ansible).
• Practical experience managing on-premises and virtualized infrastructure (VMware, Hyper-V, KVM).
• Working knowledge of ISO 27001, and NIST 800-series compliance frameworks.
• Familiarity with network security, system hardening, and access management across hybrid environments.

• Experience with Kubernetes, container orchestration, and hybrid cloud integration.
• Knowledge of FedRAMP, CMMC, or other federal cybersecurity frameworks.
• Familiarity with PKI, code signing, and secure key management.
• Experience integrating SAST, DAST, dependency scanning, and compliance automation tools.
• Contribution to continuous improvement of secure SDLC and Dev Sec Ops  maturity models.
• Summary

As a Dev Ops Software Developer, you will drive secure, automated, and…