DevSecOps Engineer

Program

Description:

NOTE: This is a short-term position with an expected duration of April 1, 2026 - September 15th, 2026. This program provides IT services focused on building, securing, and operating the Department of Veteran Affairs LGY's home loan product-line technology. The contract's purpose is to modernize and sustain critical home loan technology systems that support LGY's delivery of mortgage-related services to program stakeholders, to provide continuous delivery and security integration.

This position focuses on creating and modifying pipelines using Git Hub Enterprise Cloud repositories. The role requires expertise in developing and maintaining pipelines using Jenkins servers and troubleshooting deployment issues. Candidates should incorporate metrics such as Mean Time To Build (MTTB) and Mean Time To Deploy (MTTD). Experience with multiple CI/CD tools, Git Actions, and code scanning tools like CodeQL, Fortify, Sonar Qube, and Nexus is desired.

Familiarity with automation tools such as Selenium, Cucumber, Maven, and AWS Code Build/Code Deploy is advantageous.

• CI/CD Pipeline Engineering Design, implement, and maintain CI/CD pipelines aligned to team and program delivery practices.
• Create and modify pipeline definitions and workflows tied to Git Hub Enterprise Cloud repositories.
• Develop and maintain pipeline jobs and shared libraries on Jenkins (pipelines-as-code, scripted/declarative approaches as applicable).
• Standardize pipeline patterns and reusable templates to reduce duplication and improve maintainability.
• Deployment Troubleshooting & Operational Support Diagnose and resolve build failures, deployment issues, and environmental inconsistencies across lower and higher environments.
• Perform root cause analysis (RCA) and implement corrective actions to prevent recurring failures.
• Partner with engineering, QA, security, and platform teams to remediate pipeline blockers and streamline deployments.
• Dev Sec Ops  Metrics & Continuous Improvement Instrument and report delivery metrics including MTTB and MTTD; identify bottlenecks and implement improvements.
• Monitor pipeline performance (queue time, build duration, failure rates, flaky tests) and drive optimization.
• Improve automation coverage and reduce manual steps through pipeline enhancements.
• Security & Code Quality Integration ("Shift Left") Integrate code scanning and quality gates into pipelines using tools such as:
  CodeQL, Fortify, Sonar Qube, and artifact/repository controls like Nexus Ensure pipelines enforce consistent security and quality checks prior to merge/release.
• Collaborate with security stakeholders to tune scanning thresholds, manage findings, and support remediation workflows.
• Automation Enablement Implement or enhance automation steps using tools such as:
  Selenium, Cucumber, Maven Support automated build/test/deploy stages & improve feedback loops to developers.
• Documentation & Enablement Document pipeline standards, usage guides, and operational runbooks.
• Provide guidance and mentoring to teams on CI/CD best practices, branching strategies, and pipeline troubleshooting.

• 2+ years of experience
• Technical / Tools:
  Strong hands‑on experience building and maintaining CI/CD pipelines with Jenkins.
• Experience creating and modifying pipelines integrated with Git Hub Enterprise Cloud repositories.
• Proven ability to troubleshoot build and deployment issues across CI/CD workflows.
• Ability to define, track, and improve pipeline performance using metrics like MTTB and MTTD.
• Understanding of CI/CD best practices: pipeline-as-code, artifact management, environment promotion, rollback considerations.
• Solid understanding of source control workflows (branching, pull requests, merge strategies).
• Scripting/automation capability (e.g., Bash/Power Shell or similar) to support pipeline tasks and troubleshooting.
• Familiarity with dependency/build tooling (e.g., Maven) and packaging concepts.

• CI/CD Ecosystem Breadth:
  Experience with multiple CI/CD tools beyond Jenkins (e.g., Git Hub Actions and other enterprise CI/CD platforms).
• Hands‑on experience with Git Hub Actions workflow development…