For more details, please connect with
Soumya Nayak at
[email protected] or call at
(919) 892-9711.
Job Title: Mid-Level DevSecOps Engineer
Duration: 5years
Location: Remote preferred, may needed onsite upon request at Washington, DC 20515
Hours Per Week: 40 Hours
Ceipal ID: FED_AWS012_SN
Job Code: CB26-RFQ0012
Scope of Project:
Client maintains a hybrid cloud infrastructure environment supported by established DevSecOps practices, security baselines, and federal compliance frameworks.
To advance its modernization initiatives, client seeks DevSecOps Engineering Services to augment existing engineering staff and expand upon established infrastructure automation, CI/CD pipeline capabilities, container orchestration, and security-hardened delivery practices.
The objective is to extend and mature its existing infrastructure automation and secure software delivery capabilities.
Responsibilities:
Maintain, extend, and improve existing Terraform and OpenTofu codebases used to provision and manage client's cloud and hybrid infrastructure
Write modular, reusable configurations and manage state files and remote backends
Develop and maintain Ansible playbooks and roles to automate system configuration, compliance enforcement, patch management, and application deployment
Build, maintain, and improve GitHub Actions workflows to automate build, test, security scanning, and deployment processes
Incorporate security gates including static analysis (SAST), dependency scanning, secrets detection, and policy-as-code validation
Support containerized application delivery using Docker for image builds and Kubernetes for orchestration
Write and maintain Dockerfiles following image hardening best practices
Manage Kubernetes manifests and Helm charts
Support namespace and RBAC configuration
Assist with cluster health monitoring and troubleshooting
Integrate security practices throughout the software delivery lifecycle (Shift-Left security)
Incorporate SAST/DAST scanning tools into pipelines
Enforce CIS benchmarks and client security baselines on infrastructure and container configurations
Support NIST SP 800-53 and FISMA compliance requirements
Produce documentation to support audit and assessment activities
Participate in stand-ups, sprint planning, technical review sessions, peer reviews, and change management processes
Required Technical Skills
Hands-on experience with Terraform and OpenTofu, including module development, remote state management, and workspace management
Proficiency with Ansible, including playbook and role development, dynamic inventories, and Ansible Vault for secrets management
Demonstrated experience designing and maintaining GitHub Actions workflows, including reusable workflows, matrix builds, and security gate integration
Working knowledge of Docker image authoring and hardening, Kubernetes manifest and Helm chart management, and container security scanning tools (e.g., Trivy, Grype, or equivalent)
Familiarity with SAST tools (e.g., Semgrep, Checkov, tfsec), secrets scanning (e.g., Gitleaks, Detect-Secrets), and policy-as-code frameworks (e.g., OPA/Rego)
Proficiency with Git-based workflows including branching strategies, pull request reviews, and protected branch enforcement
Preferred Skills
Experience in a federal or highly regulated environment
Familiarity with NIST SP 800-53, FISMA, and FedRAMP compliance requirements
Cloud platform experience (AWS)
Experience with secrets management tools (e.g., HashiCorp Vault)
Scripting proficiency in Python and Bash
Additional Requirement
Security Clearance: Public Trust Tier 2 clearance level required
Background check conducted through Capitol Police to access the client network
V Group Inc. is a NJ-based IT Services and Products Company with its business strategically categorized in various Business Units including Public Sector, Enterprise Solutions, Professional Services, Ecommerce, Projects, and Products. Within Public Sector business unit, we cater IT Professional Services to Federal, State and Local. We have multiple awards/contracts with 30+ states, including but not limited to NY, CA, FL, GA, MD, MI, NC, OH, OR, CO, CT, TN, PA, TX, VA, NM, VT, and WA. If you are considering applying for a position with V Group, or partnering with us on a position, please feel free to contact me for any questions you may have regarding our services and the advantages we can offer you as a consultant.
Please share my contact information with others working in Information Technology.
Website: https://www.vgroupinc.com/publicsector
LinkedIn: https://www.linkedin.com/company/v-group/
Facebook: https://www.facebook.com/VGroupIT
Twitter: https://www.twitter.com/vgroupinc