LMI Consulting, LLC
DevSecOps Engineer - IronSled - Clearance Preferred
LMI Consulting, LLC, Tysons Corner, Virginia, United States
Overview
LMI is looking for an expert
DevSecOps Engineer
to join our team to support transforming and modernizing how the United States Army delivers software. This is a 100% remote role with quarterly travel for in-person team planning and collaboration events. Active Secret clearance preferred; but will consider candidates eligible to obtain a secret clearance. You must be a U.S. citizen.
LMI is a digital solutions provider delivering mission-ready technology and services to federal agencies. LMI serves the defense, space, healthcare, and energy sectors with a focus on agility and collaboration. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value.
Responsibilities The DevSecOps Engineer will work as IronSled's Deployment Engineer, collaborating with internal application teams to deploy onto IronSled in various environments. IronSled serves as the central hub for all software development projects, enabling quick setup of development environments with standardized tools and resources.
Access standardized tools and resources
Build applications using secure, pre-approved components
Deploy and manage applications throughout their lifecycle
Monitor application performance and security
CI/CD :
Design, implement, and manage CI/CD pipelines in
GitLab
to ensure efficient and reliable software delivery.
Integrate security tools and practices into CI/CD workflows to detect and mitigate risks early.
Familiar with deployment strategies including blue/green, canary, and A/B testing.
Automation and Scripting :
Develop and maintain automation scripts to streamline deployment processes.
Advise on and implement configuration management tools for consistent environment setup.
Develop and manage automated deployment and configuration of Kubernetes clusters.
Support automated testing including functional, integration, end-to-end, resilience, and disaster recovery.
Security Integration :
Implement security measures and controls within CI/CD pipelines.
Develop and employ automated, regular pre- and post-deployment security assessments and vulnerability testing.
Ensure compliance with Army and DoD security standards and policies.
Provide technical input into security remediation documentation.
Monitoring and Incident Response :
Set up and maintain monitoring and logging to detect and respond to incidents in real-time.
Collaborate with security teams to investigate and remediate security incidents and breaches.
Collaboration and Communication :
Work with development, operations, and security teams to ensure seamless security practices.
Provide training and guidance on security best practices and DevSecOps methodologies.
Coordinate with Government service providers to implement technical solutions.
Infrastructure as Code (IaC) :
Utilize AWS IaC tools (CloudFormation, SAM, CDK) to manage and provision infrastructure.
Ensure infrastructure is secure, scalable, and compliant with Army requirements.
Risk Management :
Identify and address potential security risks and vulnerabilities throughout the development lifecycle.
Implement risk mitigation strategies and conduct regular risk assessments.
Compliance and Documentation :
Ensure all systems and applications comply with regulations and standards (e.g., NIST, FISMA, RMF).
Provide DevSecOps input to comprehensive security documentation and incident response plans.
Performance Optimization :
Optimize performance and scalability of applications and infrastructure.
Conduct performance testing and implement improvements as needed.
Research and Development :
Stay current with emerging technologies and security trends.
Monitor and adapt to Government technology and security trends.
Evaluate and integrate new tools to enhance the security posture of Army systems.
Disaster Recovery and Organization Continuity :
Develop and maintain disaster recovery plans and organization continuity strategies with System Architect and Product Management.
Conduct regular drills and tests to ensure preparedness for disruptions.
Software Development Support :
Assist in the design, development, and deployment of secure software solutions.
Coordinate with lead developers to ensure security is considered throughout the SDLC.
Qualifications Minimum requirements include:
SECRET security clearance preferred
Bachelor's degree in Computer Science or related field
DoD 8570 IAT Level II Certification (SEC+ or equivalent)
10+ years of experience as a DevSecOps or Platform Engineer
Proven experience with enterprise CI/CD
Familiarity with programming best practices
Ability to debug, optimize code, and automate routine tasks
Analytical problem-solving and strong communication skills
Understanding of Unix/Linux operating systems
Experience building automated build and deploy pipelines
Experience with security scans of source and artifacts driving conditional build/deploy procedures
Ability to guide software and infrastructure teams on code development and deployment
Strong version control practices for release artifacts
Understanding of containerization and orchestration (Kubernetes-related: EKS, AKS, GKE, etc.)
Experience with GitLab CI/CD
Experience with Bash scripting
Experience with AWS CI/CD tools and services
Experience with Agile methodologies
Ability to work in a highly collaborative team environment
PREFERRED EXPERIENCE/SKILLS:
Master’s degree in a related field
AWS GovCloud experience
SAFe certification and experience
Experience in IL4 or equivalent secure environments
Experience with federal IT security requirements (FedRAMP, FISMA) for ATO
Experience in a consultant/client environment
LMI is an Equal Opportunity Employer. LMI provides equal employment opportunities regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, disability, age, protected veteran status, citizenship status, genetic information, or any other characteristic protected by law. If you need assistance with the application process, contact accommodations@lmi.org.
#J-18808-Ljbffr
DevSecOps Engineer
to join our team to support transforming and modernizing how the United States Army delivers software. This is a 100% remote role with quarterly travel for in-person team planning and collaboration events. Active Secret clearance preferred; but will consider candidates eligible to obtain a secret clearance. You must be a U.S. citizen.
LMI is a digital solutions provider delivering mission-ready technology and services to federal agencies. LMI serves the defense, space, healthcare, and energy sectors with a focus on agility and collaboration. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value.
Responsibilities The DevSecOps Engineer will work as IronSled's Deployment Engineer, collaborating with internal application teams to deploy onto IronSled in various environments. IronSled serves as the central hub for all software development projects, enabling quick setup of development environments with standardized tools and resources.
Access standardized tools and resources
Build applications using secure, pre-approved components
Deploy and manage applications throughout their lifecycle
Monitor application performance and security
CI/CD :
Design, implement, and manage CI/CD pipelines in
GitLab
to ensure efficient and reliable software delivery.
Integrate security tools and practices into CI/CD workflows to detect and mitigate risks early.
Familiar with deployment strategies including blue/green, canary, and A/B testing.
Automation and Scripting :
Develop and maintain automation scripts to streamline deployment processes.
Advise on and implement configuration management tools for consistent environment setup.
Develop and manage automated deployment and configuration of Kubernetes clusters.
Support automated testing including functional, integration, end-to-end, resilience, and disaster recovery.
Security Integration :
Implement security measures and controls within CI/CD pipelines.
Develop and employ automated, regular pre- and post-deployment security assessments and vulnerability testing.
Ensure compliance with Army and DoD security standards and policies.
Provide technical input into security remediation documentation.
Monitoring and Incident Response :
Set up and maintain monitoring and logging to detect and respond to incidents in real-time.
Collaborate with security teams to investigate and remediate security incidents and breaches.
Collaboration and Communication :
Work with development, operations, and security teams to ensure seamless security practices.
Provide training and guidance on security best practices and DevSecOps methodologies.
Coordinate with Government service providers to implement technical solutions.
Infrastructure as Code (IaC) :
Utilize AWS IaC tools (CloudFormation, SAM, CDK) to manage and provision infrastructure.
Ensure infrastructure is secure, scalable, and compliant with Army requirements.
Risk Management :
Identify and address potential security risks and vulnerabilities throughout the development lifecycle.
Implement risk mitigation strategies and conduct regular risk assessments.
Compliance and Documentation :
Ensure all systems and applications comply with regulations and standards (e.g., NIST, FISMA, RMF).
Provide DevSecOps input to comprehensive security documentation and incident response plans.
Performance Optimization :
Optimize performance and scalability of applications and infrastructure.
Conduct performance testing and implement improvements as needed.
Research and Development :
Stay current with emerging technologies and security trends.
Monitor and adapt to Government technology and security trends.
Evaluate and integrate new tools to enhance the security posture of Army systems.
Disaster Recovery and Organization Continuity :
Develop and maintain disaster recovery plans and organization continuity strategies with System Architect and Product Management.
Conduct regular drills and tests to ensure preparedness for disruptions.
Software Development Support :
Assist in the design, development, and deployment of secure software solutions.
Coordinate with lead developers to ensure security is considered throughout the SDLC.
Qualifications Minimum requirements include:
SECRET security clearance preferred
Bachelor's degree in Computer Science or related field
DoD 8570 IAT Level II Certification (SEC+ or equivalent)
10+ years of experience as a DevSecOps or Platform Engineer
Proven experience with enterprise CI/CD
Familiarity with programming best practices
Ability to debug, optimize code, and automate routine tasks
Analytical problem-solving and strong communication skills
Understanding of Unix/Linux operating systems
Experience building automated build and deploy pipelines
Experience with security scans of source and artifacts driving conditional build/deploy procedures
Ability to guide software and infrastructure teams on code development and deployment
Strong version control practices for release artifacts
Understanding of containerization and orchestration (Kubernetes-related: EKS, AKS, GKE, etc.)
Experience with GitLab CI/CD
Experience with Bash scripting
Experience with AWS CI/CD tools and services
Experience with Agile methodologies
Ability to work in a highly collaborative team environment
PREFERRED EXPERIENCE/SKILLS:
Master’s degree in a related field
AWS GovCloud experience
SAFe certification and experience
Experience in IL4 or equivalent secure environments
Experience with federal IT security requirements (FedRAMP, FISMA) for ATO
Experience in a consultant/client environment
LMI is an Equal Opportunity Employer. LMI provides equal employment opportunities regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, disability, age, protected veteran status, citizenship status, genetic information, or any other characteristic protected by law. If you need assistance with the application process, contact accommodations@lmi.org.
#J-18808-Ljbffr