DevSecOps Engineer

Ensuring system platform supports developer software tools for DoD and IC community and that developer pipeline tools are functioning and communicating in accordance with Federal, Department of Defense (DoD), and Intelligence Community (IC) policy
• Performing system administration for enterprise software applications on a regular upgrade cycle, ensure DoD users have availability for development software tools and workflow apps in a DevSecOps pipeline
• Developing and assisting design of the security interfaces, security interconnections, and the trust relationship between system components and external systems
• Implementing system security designs using commercial-off-the-shelf (COTS), government-off- the-shelf (GOTS), and open-source hardware and software
• Overseeing the hardening and configuration systems and system components in accordance with various Federal, DoD, and IC guidance
• Managing security assessments of systems and system components using industry standard automated vulnerability scanning tools
  • Vulnerability scanning tools may include Tenable Nessus and Security Content Automation Protocol (SCAP)
• Coordinating with cyber on security assessments to identify security control failures and recommend corrective actions

#LI-JC1

• Active Security Clearance; eligible for CSWF Level II designation; Security+ Certification.
• 5 or more years of experience implementing and advocating for DevSecOps principles across enterprise environments.
• Solid background in Linux system administration and server management.
• Experience managing CI/CD pipeline workflows, utilizing Git, Bash scripting, general automation, and cloud-native application deployment.
• Hands-on experience deploying and operating applications in AWS and AWS GovCloud, including Kubernetes-based workloads, IAM-integrated services, and storage.
• Experience configuring secure outbound network connectivity in AWS, including VPCs, route tables, NAT routing, SMTP relay access, and controlled egress.
• Hands-on deployment experience using Docker, Podman, OpenShift, Kubernetes, Amazon EKS, Helm, and Argo CD.
• Experience creating automation workflows using scripting and automation tools such as Bash, PowerShell, Ansible, and n8n.
• Ability to troubleshoot complex production applications across Kubernetes, AWS, Linux, networking, databases, and application-layer services.
• Ability to work full-time on-site at the customer location in a secure area on classified systems.

• Advanced EKS Scaling: Experience with EKS Auto Mode and Karpenter-style node lifecycle management, including node disruption controls, maintenance windows, and workload rescheduling.
• DoD Identity & Access Management: Deep experience integrating applications with enterprise identity providers using SAML, OIDC, CAC/PIV, MFA, Keycloak, and DoD PKI certificates.
• Stateful Kubernetes Workloads: Expertise deploying stateful applications in Kubernetes using StatefulSets, PVCs, volume expansion, and automated backup/restore processes.
• Extended DevSecOps Tooling: Experience operating specialized platform services beyond standard tools, including Artifactory, Graylog (streams & pipelines), Grafana, Coverity, BDBA, and SRM/CodeDx.
• Advanced Ingress & Secret Management: Experience designing secure application hosting, reverse proxies, and routing architectures utilizing ALB, NLB, F5/APM, ACM, and GitOps-safe secret management via External Secrets Operator.

SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT, THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS, A U.S. GOVERNMENT SECURITY CLEARANCE AT THE SECRET LEVEL

• No travel required other than working at the customer site in San Diego

Scientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients.

SRC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with a company match, life insurance, vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually, 11 paid holidays, tuition reimbursement, and a work environment that encourages excellence and more. For positions requiring a security clearance, selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.

Scientific Research Corporation is an equal opportunity employer that does not discriminate in employment.

All qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other protected characteristic under federal, state or local law.

Scientific Research Corporation endeavors to make www.scires.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact jobs@scires.com for assistance. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.