DevSecOps Engineer - Clearance Required

Overview:

LMI is seeking an experienced DevSecOps Engineer to support the U.S. Army Training Information System (ATIS) program. ATIS is a major Army initiative to modernize and consolidate Army training systems into a single, cloud-native, enterprise-level capability. As part of an Agile Release Train (ART) operating under the Scaled Agile Framework (SAFe), the DevSecOps Engineer will focus on integrating security controls, automation, and compliance throughout the entire Software Development Lifecycle (SDLC). The incumbent will be responsible for implementing, managing, and continually optimizing security tools and processes within the CI/CD pipeline to ensure ATIS applications meet stringent Department of Defense (DoD) Risk Management Framework (RMF) and cybersecurity requirements.

LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed. Investing in technology and prototypes ahead of need, LMI brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed.

Leveraging our mission-ready technology and solutions, proven expertise in federal deployment, and strategic relationships, we enhance outcomes for the government, efficiently and effectively. With a focus on agility and collaboration, LMI serves the defense, space, healthcare, and energy sectors-helping agencies navigate complexity and outpace change. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value.

Key Responsibilities:

Design, extend, integrate, and implement existing and new CI/CD pipelines using GitLab and IaC tools (e.g., Terraform, CloudFormation).
• Continuous modernization of CI/CD techniques and practices as industry best practices evolve.
• Design, implement, and maintain security testing tools (SAST, DAST, SCA, IAST) directly into the ATIS CI/CD pipeline (e.g., Jenkins, GitLab CI, Azure DevOps).
• Design and maintain AWS GovCloud environments following DevSecOps best practices.
• Ensure continuous integration of security testing tools (e.g., SAST, DAST, SCA, IAST) within the ATIS CI/CD pipeline.
• Provide guidance and training to development teams on secure coding practices and effective use of security tools.
• Participate in threat modeling and security architecture reviews for new features and system enhancements.
• Collaborate with Cybersecurity team to ensure continuous monitoring and reporting findings and assist with ATO Documentation.
• Develop and manage automated gates to enforce security policy checks, vulnerability scanning, and compliance requirements before deployment to testing and production environments.
• Facilitate and automate the action steps of DoD Security Technical Implementation Guides (STIGs) for operating systems, middleware, and application stacks in collaboration with the Cybersecurity team.
• Provide rapid response and surge support to additional ATIS systems as needed.
• Implementing, managing, and monitoring cloud-based security tools to ensure compliance, enhance security posture, and automate best practices for threat detection and incident prevention/response.

Required Qualifications:

• Active Secret security clearance.
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent professional experience).
• 6+ years of experience in AWS cloud engineering and automation.
• Demonstrated expertise in the automation of software deployment infrastructure and of software deployment build systems (GitLab CI, CircleCI, Jenkins, CloudFormation, Terraform, etc...)
• Active DoDI 8140 certification/qualification.
• Demonstrated expertise in scripting languages (PowerShell, Python, Bash).
• Experience supporting secure DoD systems with CI/CD and containerization.
• Hands-on experience with DoD RMF, NIST SP 800-53, and STIG compliance in support of government ATO processes.

Preferred Qualifications:

• Prior experience supporting U.S. Army cybersecurity.
• Experience with container orchestration technologies (e.g., Kubernetes, OpenShift) and securing containerized applications.
• Relevant professional certifications, such as AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate, or CISSP.
• Familiarity with logging and monitoring tools (e.g., ELK Stack, Splunk, Prometheus, Trellix/ESS) for security event analysis.
• Experience in secure software supply chain management and artifact validation.
• Knowledge of FedRAMP, FISMA, or DoD cloud accreditation.
• SAFe Agile certification (e.g., SAFe Practitioner, SAFe Architect, SAFe Scrum Master) or equivalent Agile training.
• Strong documentation, reporting, and presentation skills for technical and non-technical audiences.

Travel Requirements:

• Occasional travel required (e.g., quarterly for PI Planning, user engagement sessions, and key program milestones).

Target salary range: $131,987 - 227,328

Disclaimer: The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.

#LI-SH1