DevSecOps Engineer

We are seeking a DevSecOps Engineer to support the development, integration, security, and deployment of OS/COMET applications across hybrid on-premises and cloud environments. This role will be responsible for designing and maintaining secure CI/CD pipelines, implementing infrastructure as code, enforcing security controls throughout the SDLC, and supporting containerized application deployments The ideal candidate brings strong automation, cloud, containerization, and security experience, along with the ability to collaborate closely with development and infrastructure teams.

Key Responsibilities:

Design, optimize, and maintain secure CI/CD pipelines supporting OS/COMET development.
• Embed security controls into the SDLC, including code scanning, container security, and vulnerability management.
• Implement Infrastructure as Code (OpenShift) to automate provisioning across on-prem and cloud environments.
• Monitor pipeline performance, system health, and security posture; implement continuous improvements.
• Support containerized deployments using Podman, Kubernetes and in hybrid environments.
• Collaborate with development team to optimize build, release, and deployment processes.
• Support audit readiness, documentation, and security accreditation activities.

Required Qualifications:

• 5 years with BS/BA; 3 years with MS/MA; 0 years with PhD
• Four (4) years of experience may be substituted for a bachelor's degree.
• DevOps/DevSecOps experience in enterprise environments
• Experience building and managing CI/CD pipelines (JIRA, Jenkins, GitLab CI, GitHub Actions, Sonatype Nexus, Dependency Track, etc.)
• Hands-on experience with containerization (Podman) and orchestration (OpenShift)
• Experience implementing Infrastructure as Code (.OpenShift)
• Knowledge of secure coding practices and application security scanning tools
• Experience with Linux system administration

Preferred Qualifications:

• Experience supporting mission-critical or government programs
• Experience with container security platforms
• Experience with logging and monitoring tools
• Knowledge of Zero Trust architecture principles
• Experience with Git, BitBucket, GitHub, Jenkins, Podman, OpenShift, Gradle, NPM
• Security+, CISSP, or CSSLP

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.