Position Title: DevSecOps Engineer – CI/CD, Containerization & Automation
Location: Remote (U.S.) with Occasional Travel
Client: Federal / Public Sector Programs
Work Authorization: Candidates must be authorized to work in the United States. U.S. Citizenship may be required based on client assignment.
📩 To apply, please submit your resume to careers@wintrio.com or complete the application form below.
Job Summary
WINTrio LLC is seeking an experienced DevSecOps Engineer to support Federal IT modernization initiatives by designing, implementing, and maintaining secure CI/CD pipelines, automating infrastructure deployments, and integrating security throughout the software development lifecycle.
This role focuses on cloud-native and hybrid environments, enabling secure, scalable, and automated software delivery while ensuring compliance with Federal cybersecurity and governance requirements. The successful candidate will collaborate with software developers, cloud engineers, cybersecurity teams, and program leadership to streamline application delivery through Infrastructure as Code (IaC), containerization, automation, and DevSecOps best practices.
The ideal candidate will possess hands-on experience with cloud platforms, CI/CD pipeline engineering, container orchestration, scripting, and security integration across enterprise development environments.
Job Responsibilities
- Design, build, and maintain secure CI/CD pipelines supporting application, infrastructure, and data deployments.
- Implement Infrastructure as Code (IaC) solutions using Terraform, CloudFormation, ARM Templates, Bicep, or similar technologies.
- Integrate security controls throughout the software delivery lifecycle, including SAST, DAST, Software Composition Analysis (SCA), container scanning, and secrets management.
- Automate infrastructure provisioning, application deployments, configuration management, and environment management across AWS and Microsoft Azure environments.
- Deploy and manage containerized applications using Docker, Kubernetes, Amazon EKS, Azure AKS, or OpenShift.
- Develop pipeline automation supporting build, testing, deployment, release management, rollback, and recovery processes.
- Manage source code repositories, branching strategies, and version control using Git-based platforms.
- Integrate monitoring, logging, alerting, and observability into cloud environments and deployment pipelines.
- Support compliance requirements through audit logging, traceability, documentation, and secure configuration management.
- Collaborate with software developers, cloud architects, cybersecurity engineers, and infrastructure teams to ensure secure and reliable software delivery.
- Support continuous improvement initiatives that enhance automation, deployment efficiency, and operational resilience.
Required Qualifications
- Bachelor’s degree in Computer Science, Information Technology, Software Engineering, Cybersecurity, or a related field, or equivalent professional experience.
- Minimum five (5) years of experience in DevOps, DevSecOps, Platform Engineering, Site Reliability Engineering (SRE), or automation engineering.
- Hands-on experience designing and maintaining CI/CD pipelines.
- Experience working with AWS, Microsoft Azure, or hybrid cloud environments.
- Experience implementing Infrastructure as Code (IaC) solutions.
- Experience with scripting or programming languages such as Python, Bash, or PowerShell.
- Strong understanding of Secure Software Development Lifecycle (Secure SDLC) principles.
- Strong written and verbal communication skills.
- Strong analytical, troubleshooting, and problem-solving abilities.
Technical Areas
DevSecOps & CI/CD
- Continuous Integration (CI)
- Continuous Delivery (CD)
- Continuous Deployment
- Pipeline Automation
- Release Management
- Build Automation
- Deployment Automation
- Secure SDLC
Infrastructure Automation
- Infrastructure as Code (IaC)
- Configuration Management
- Environment Provisioning
- Infrastructure Automation
- Deployment Orchestration
Cloud Platforms
- AWS
- Microsoft Azure
- Hybrid Cloud Environments
- Cloud-Native Applications
- Cloud Infrastructure
Containerization & Orchestration
- Docker
- Kubernetes
- Amazon EKS
- Azure AKS
- Helm
- OpenShift
Security Integration
- Static Application Security Testing (SAST)
- Dynamic Application Security Testing (DAST)
- Software Composition Analysis (SCA)
- Secrets Management
- Container Security
- Security Automation
Tools & Platforms
CI/CD Platforms
- Jenkins
- GitLab CI/CD
- GitHub Actions
- Azure DevOps
Source Code Management
- Git
- GitHub
- GitLab
- Bitbucket
Infrastructure as Code
- Terraform
- AWS CloudFormation
- ARM Templates
- Bicep
Security & Code Quality
- Fortify
- SonarQube
- Checkmarx
- Snyk
Secrets Management
- HashiCorp Vault
- AWS Secrets Manager
- Azure Key Vault
Monitoring & Observability
- Prometheus
- Grafana
- ELK Stack
- Amazon CloudWatch
- Azure Monitor
Scripting & Automation
- Python
- Bash
- PowerShell
Compliance & Security
- NIST Risk Management Framework (RMF)
- FedRAMP
- FISMA
- STIGs
- Audit Logging
- Secure Configuration Management
Preferred Certifications
- AWS Certified DevOps Engineer
- Microsoft Azure DevOps Engineer Expert
- Certified Kubernetes Administrator (CKA)
- Certified Kubernetes Security Specialist (CKS)
- CompTIA Security+
- Certified Cloud Security Professional (CCSP)
Preferred Qualifications
- Experience supporting Federal DevSecOps, CI/CD, or software modernization programs.
- Experience integrating automated security testing and security tools into CI/CD pipelines.
- Experience working within Agile, Scrum, or SAFe software development environments.
- Experience supporting large-scale container orchestration platforms and Kubernetes clusters.
- Experience supporting cloud-native application development and modernization initiatives.
- Familiarity with Federal cybersecurity compliance frameworks and secure software delivery requirements.
Work Environment
- Full-time position.
- Remote within the United States.
- Standard business hours Monday through Friday.
- Occasional travel may be required in support of customer meetings, technical workshops, and program activities.
WINTrio Benefits
- Healthcare (Medical, Dental, and Vision)
- Flexible Spending Account (FSA) and Health Savings Account (HSA)
- 401(k) and Retirement Savings Plan
- Annual Bonus and Profit Sharing Opportunities
- Paid Time Off (PTO) and Vacation
- Employee Assistance Program (EAP)
- Life, Personal, and Voluntary Disability Insurance
Growth Opportunities
There is ample opportunity to grow in multiple dimensions, including DevSecOps, cloud engineering, platform engineering, cybersecurity, automation, Artificial Intelligence (AI), Machine Learning (ML), cloud modernization, and enterprise digital transformation. We are a completely employee-driven company, and our continued success is built on the talent, dedication, and innovation of our team members.
Equal Opportunity Employer
WINTrio LLC is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.