• DevSecOps Engineer (Remote)

    Koniag Government Services (Chantilly, VA)


    Koniag Management Solutions, LLC, a Koniag Government Services company, is seeking an DevSecOps Engineer to support KMS and our government customer. **This position requires the candidate to be able to obtain a Public Trust** . This is a **remote** opportunity.

     

    We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

     

    Koniag Management Solutions is seeking a talented DevSecOps Engineer with specialized expertise in building and optimizing CI/CD pipelines in GitLab. This role will be instrumental in implementing security-focused automation, enhancing our development processes, and ensuring secure software delivery through GitLab's powerful CI/CD capabilities. The ideal candidate will have a strong background in DevOps practices, security implementation within CI/CD workflows, and extensive experience with GitLab CI/CD.

    Essential Functions, Responsibilities & Duties may include, but are not limited to:

    The DevSecOps Engineer will be responsible for designing, implementing, and maintaining secure CI/CD pipelines using GitLab, with a focus on integrating security at every stage of the software development lifecycle. This role will work closely with development teams, security teams, and infrastructure teams to automate processes, implement security controls, and optimize delivery workflows. Principal responsibilities will include but are not limited to:

     

    + Design, develop, and maintain CI/CD pipelines in GitLab with integrated security controls

    + Implement Infrastructure as Code (IaC) practices using tools such as Terraform, Ansible, or CloudFormation

    + Configure and optimize GitLab Runners for different environments and workloads

    + Integrate security scanning tools (SAST, DAST, container scanning, dependency scanning) into the CI/CD workflow

    + Create and maintain GitLab CI/CD templates that enforce security best practices

    + Build automated testing frameworks to ensure code quality and security

    + Implement secrets management solutions for secure credential handling in pipelines

    + Develop and enforce branch protection rules and merge request approval workflows

    + Automate deployment processes across multiple environments (dev, test, staging, production)

    + Monitor pipeline performance and implement optimizations to improve efficiency

    + Create documentation for CI/CD processes, security controls, and best practices

    + Collaborate with development teams to troubleshoot pipeline issues and provide guidance on best practices

    + Implement metrics and reporting for pipeline performance and security compliance

    + Stay current with GitLab features and updates to continuously improve the CI/CD processes

    Education and Experience:

    + Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent work experience)

    + 3+ years of experience in DevOps or SRE roles

    + 2+ years of hands-on experience with GitLab CI/CD pipelines

    + Strong background in implementing security controls within CI/CD processes

    + Experience with containerization technologies (Docker, Kubernetes)

    Required Skills and Competencies:

    + Expert knowledge of GitLab CI/CD pipeline configuration and optimization

    + Strong understanding of security principles and how to implement them in CI/CD workflows

    + Experience with infrastructure as code tools (Terraform, CloudFormation, Ansible)

    + Proficiency with containerization technologies (Docker) and container orchestration (Kubernetes)

    + Knowledge of scripting languages (Bash, Python, or similar)

    + Experience integrating security scanning tools (SAST, DAST, SCA, container scanning) into pipelines

    + Understanding of Git workflows and branching strategies

    + Experience with implementing and managing GitLab Runners (shared, specific, and autoscaling)

    + Familiarity with cloud platforms (AWS, Azure, or GCP)

    + Knowledge of secrets management solutions (HashiCorp Vault, AWS Secrets Manager, etc.)

    + Understanding of compliance requirements and how to implement them in CI/CD pipelines

    + Experience with monitoring tools and logging solutions

    + Ability to troubleshoot complex pipeline issues

    + Strong communication skills to work effectively with cross-functional teams

    + Understanding of software development lifecycle and agile methodologies

    Desired Skills and Competencies:

    + GitLab certifications or advanced training

    + Experience with GitLab Enterprise features and administration

    + Knowledge of GitLab API for automation and integration

    + Experience with implementing GitLab security features (dependency scanning, container scanning)

    + Background in building custom Docker images for optimized CI/CD processes

    + Experience with multi-cloud or hybrid cloud environments

    + Knowledge of advanced GitLab CI/CD features (DAG pipelines, parent-child pipelines)

    + Experience with implementing zero-trust security models in CI/CD

    + Knowledge of compliance frameworks (NIST, FedRAMP, etc.)

    + Experience with database migrations within CI/CD pipelines

    + Experience with blue/green or canary deployment strategies

    + Knowledge of implementing secure supply chain practices

    + Experience with implementing policy as code (OPA, Sentinel)

    + Background in implementing observability solutions within CI/CD pipelines

    Security Requirement:

    + Ability to obtain a Public Trust

    Our Equal Employment Opportunity Policy

    The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment.

     

    The company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at [email protected] or by calling 703-488-9377 to request accommodations.

     

    _Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit_ _www.koniag-gs.com_ _._

     

    _Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352_

    Job Details

    Job Family** **Software and Systems Development

     

    Job Function** **DevOps Engineer

     

    Pay Type** **Salary

     

    Telecommute Percentage** **100