Benefits:

401(k) matching
Competitive salary
Health insurance
Paid time off

About this Role:

We are seeking a DevSecOps Engineer with deep federal experience to design, implement, and operate secure CI/CD pipelines using GitLab across complex, multi-cloud environments. You will work closely with cybersecurity, application development, and infrastructure teams to embed security into every stage of the software delivery life cycle, ensuring compliance with federal standards (FISMA, FedRAMP, NIST 800-53/171, Zero Trust Principles)

Key Responsibilities:

• Design and Manage CI/CD pipelines

• Architect, implement, and maintain GitLab-based CI/CD pipelines for multiple applications and services.

• Automate build, test, security scanning, and deployment workflows across on-prem and cloud (AWS, Azure, GCP) environments.

• Optimize pipeline performance, reliability, and traceability to support rapid, secure releases.

• Embed Security in the SDLC (DevSecOps)

• Integrate SAST, DAST, SCA, container scanning, and laC scanning into GitLab pipelines.

• Impement and maintain policy-as-code, security gates, and approvals aligned to Federal cybersecurity and compliance requirements.

• Collaborate with security teams to respond to findings, prioritize remediations and continuously improve security posture.

• Infrastructure as code and automation

• Build and maintain infrastructure as code (laC) using tools such as Terraform, Ansible, Helm, or CloudFormation.

• Automate environment provisioning, configuration management, and application deployment.

• Contribute to standardized, reusable, pipeline templates and automation toolchains.

• Compliance, Governance & Reporting

• Align CI/CD and DevSecOps practices with NIST, FISMA, OMB, FedRAMP, and agency-specific policies.

• Implement logging, monitoring, and auditing in support of ATO, PoA&M management, and continuous monitoring.

• Produce documentation (runbooks, architecture diagrams, SOPs) to support audits and governance.

• Partner with developers, product owners, cybersecurity, and operations teams to promote DevSecOps best practices.

• Provide technical guidance and knowledge transfer on GitLab CI/CD automation, and secure coding practices.

• Participate in incident response and post-incident reviews related to build, deployment, or security pipeline issues.

Qualifications and Skills:

• Must be a U.S. citizen and able to obtain a Public Trust

• 5+ years' experience in DevOps/DevSecOps roles

• 3+ years’ working on federal programs or regulated environments, with practical understanding of NIST, FISMA, and FedRAMP requirements.

• 2+ years’ building and managing GitLab CI/CD pipelines (or equivalent, with recent GitLab focus).

• Strong expertise with GitLab CI/CD (runners, pipelines, triggers, variables, artifacts, environments).

• Experience integrating security tools (SAST, DAST, SCA, container scanning) into pipelines.

• Hands-on experience with containers and orchestration (Docker, Kubernetes, OpenShift or equivalent).

• Proficiency with IaC and automation tools such as Terraform, Ansible, or similar.

• Solid knowledge of Linux, Shell scripting, and at least one programming language (Python, Go, or similar).

• Familiarity with logging/monitoring tools (e.g. Splunk, CloudWatch, Prometheus, ELK/EFK).

• Working knowledge of NIST 800-53/171, Zero Trust Principles, and continuous monitoring.

• Experience supporting ATO processes and documenting controls in coordination with ISSOs/ISSMs

• Strong communication skills with ability to translate technical topics for non-technical stakeholders and ability to work with cross-functional agile teams.

Desired Skills and Competencies:

• Experience in HHS, NIH, CMS, ACF, DoD, or other civilian/defense agencies.

• Experience with additional CI/CD tools (GitHub Actions, Jenkins, Azure DevOps) and migrating pipelines into GitLab.

• Kubernetes Administrator (CKA) certification.

• GIAC Cloud Security Automation (GCSA), CompTIA Security+, or similar.

• AWS/Azure/GCP Associate or Professional-Level certifications.

• Experience implementing Zero Trust-aligned architectures, especially around Identity, access, and data protection.

Additional Information:

You will drive the modernization of federal systems through secure, automated delivery. Help shape DevSecOps standards, patterns, and templates used across multiple programs. You will work with leaders and engineers passionate about security, automation, and mission impact.

Flexible work from home options available.

Compensation: $125,000.00 - $135,000.00 per year

About Us

Our Approach

We firmly believe in the uniqueness of every business, necessitating a personalized approach to transformation. This conviction drives us to invest time in comprehending an organization's historical challenges and operational framework. Our commitment is to foster innovation by adopting a tailored strategy that optimizes the utilization of an organization's human resources and data assets. With a wealth of experience, we specialize in guiding organizations through the implementation of post-quantum security, protocols for autonomy, and artificial intelligence.

We are committed to working with clients to positively disrupt, modernize, and transform their organizations and business processes. Noteworthy achievements include initiatives aimed at enhancing human resilience in the food supply chain, leveraging autonomy for streamlined operations, establishing root-of-trust capabilities for high-quality, trusted data, and designing ecosystems and tools for securing and transferring digital value through digital wallets. . Our proficiency extends to using artificial intelligence and data to fortify security and enhance visibility in data assets, aiding in the management of health issues at local, state, and national levels. We've developed a modern security posture to effectively mitigate risks associated with cyber attacks from nation-states. Our wealth of experience is underpinned by collaborative work with diverse multidisciplinary teams, thriving in highly complex and rapidly changing environments.

Our Mission

Imagineeer's mission is to empower transformation through the operationalization of intuition. We establish an innovation pipeline, reimagining operations by delving into data analysis to optimize outcomes for our valued customers.

Collaborating closely with our clients, we strive to actualize the inherent genius embedded within their organizational structure. Our efforts focus on the transformation of organizations, emphasizing the development of foundational strengths in key areas, including data, personnel, hypothesis development, and the cultivation of a learning-from-failure mindset.

(if you already have a resume on Indeed)

Or apply here.

* required fields

First Name*

Last Name*

Email*

Phone*

Yes, Text Me!

I consent to receiving text messages about this hiring process and, if hired, future job related information from IMAGINEEER LLC.

Message and data rates may apply. Message frequency varies. Reply STOP to opt out. Reply HELP for help. See our User Terms of Service and Privacy Policy for details.

Get faster updates with texting!

Message and data rates may apply. Message frequency varies. Reply STOP to opt out. Reply HELP for help. See our User Terms of Service and Privacy Policy for details.