[Hiring] Senior DevSecOps Engineer @ASM Research

Role Description

The DevSecOps Engineer, Senior provides engineering leadership to design and operate secure, automated delivery pipelines for cloud‑hosted and on‑premises applications. This role builds and maintains CI/CD workflows, infrastructure‑as‑code patterns, and integrated security controls that embed testing, scanning, and policy enforcement throughout the software lifecycle. The position partners closely with development, security, and operations teams to standardize toolchains and environments that support an “as‑a‑Service” delivery model, continuously refining automation, observability, and resilience practices to improve speed, quality, and compliance for mission‑critical services.

• Design, implement, and maintain CI/CD pipelines that automate build, test, security scanning, and deployment activities across multiple environments.
• Develop and manage infrastructure‑as‑code templates and configuration‑management scripts to provision cloud and on‑premises environments in a consistent, repeatable manner.
• Integrate security tooling and practices—such as static and dynamic application security testing, dependency scanning, and policy‑as‑code—directly into DevOps workflows.
• Collaborate with development and platform teams to standardize containerization, orchestration, and environment configurations that support microservices and modern application architectures.
• Implement automation and monitoring for platform health, observability, and incident response, using metrics and logs to drive reliability and performance improvements.
• Support auto‑provisioning of infrastructure hardware, storage, and networks as part of an “as‑a‑Service” model, aligning solutions with cost, scalability, and operational objectives.
• Define and document DevSecOps standards, patterns, and best practices, mentoring engineers on Agile and DevSecOps methodologies and toolchains.
• Partner with stakeholders to evaluate new DevSecOps capabilities, assess risks, and recommend changes to improve pipeline security, resiliency, and compliance.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent relevant work experience.
• 8+ years of experience in DevSecOps, DevOps, cloud, or platform engineering roles with significant hands‑on work implementing automated pipelines and “as‑a‑Service” delivery models.
• Strong understanding of infrastructure components, cloud capabilities, and software‑defined practices, including auto‑provisioning and configuration management.
• Proven proficiency with Agile and DevSecOps methodologies and common automation tools used to build, test, secure, and deploy applications in cloud and on‑premises environments.
• Demonstrated problem‑solving, troubleshooting, communication, and interpersonal skills, with the ability to work effectively across development, security, and operations teams.
• Ability to obtain and maintain a Public Trust investigation and U.S. citizenship as required for this remote federal IT role.

Preferred Qualifications

• Experience with Kubernetes‑based platforms and service meshes used to host microservices in production environments.
• Cloud‑provider DevOps or security certification such as AWS Certified DevOps Engineer or equivalent vendor credential.
• Background supporting federal or other highly regulated environments, including familiarity with SLAs, compliance expectations, and documentation standards.
• Experience mentoring other engineers in DevSecOps practices, including infrastructure‑as‑code, continuous integration and delivery, and architecture reviews.

Compensation Ranges

Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees.

EEO Requirements

It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.

• All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age.
• All decisions on employment are made to abide by the principle of equal employment.

Physical Requirements

The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions.

Disclaimer

The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.