DevSecOps - Intermediate
Job Description
Job Description
COMPANY OVERVIEW
Join our award-winning team at Information Management Resources, Inc. (IMRI), a small business leader in the technology industry known for our commitment to innovation, excellence, and authenticity. Founded in 1992, IMRI has been at the forefront of delivering advanced cybersecurity and IT solutions, safeguarding organizations against evolving threats. We have built a reputation for our expertise in Cybersecurity, Digital Transformation, Strategic Business Consulting, and Staff Augmentation. Guided by our core values of innovation, excellence, and a solution-driven mindset, we have served a diverse portfolio of customers that includes federal agencies, state and local governments, and Fortune 1000 companies.
At IMRI, we recognize the integral part our employees play in our ongoing success. To support this, we offer a comprehensive benefits package, tailored to meet the individual needs of our employees. We are committed to promoting their overall well-being and equipping them with the necessary tools to flourish in their careers. We welcome you to be a part of our ongoing mission as we continue to navigate the digital landscape, committed to empowering organizations with our innovative solutions.
POSITION TITLE: DevSecOps Engineer (Intermediate)
CLEARANCE REQUIREMENT: Must be eligible to obtain a Public Trust Tier 2 clearance or hold an active DoD security clearance
POSITION OVERVIEW: IMRI is seeking a motivated and technically proficient DevSecOps Engineer to support a hybrid cloud environment within a federal program. This role focuses on advancing secure infrastructure automation, enhancing CI/CD pipelines, and integrating security throughout the software delivery lifecycle. The ideal candidate will build upon an established DevSecOps framework—leveraging existing tools, standards, and processes—to improve automation, strengthen security posture, and support scalable, resilient application and infrastructure delivery.
KEY RESPONSIBILITIES:
Infrastructure Automation (IaC)
- Maintain and enhance infrastructure as code using Terraform and OpenTofu
- Develop modular, reusable configurations aligned with existing engineering standards
- Manage state files, remote backends, and workspace configurations
- Refactor legacy infrastructure code to improve performance, scalability, and maintainability
- Execute infrastructure changes through approved change management processes
Configuration Management (CaC)
- Develop and maintain Ansible playbooks and roles to automate system configuration and deployment
- Support patch management, compliance enforcement, and infrastructure consistency across environments
- Adhere to established role structures, variable conventions, and inventory management practices
CI/CD Pipeline Engineering
- Build, maintain, and enhance GitHub Actions workflows for automated build, test, and deployment processes
- Integrate security controls within pipelines, including:
- Static application security testing (SAST)
- Dependency and vulnerability scanning
- Secrets detection
- Policy-as-code validation
- Ensure all pipeline changes follow peer review, version control, and approval workflows
Containerization & Orchestration
- Support containerized application environments using Docker and Kubernetes
- Develop and maintain Dockerfiles aligned with secure image build practices
- Manage Kubernetes manifests and Helm charts to support application deployment and orchestration
- Assist with cluster operations, including performance monitoring and troubleshooting
- Ensure container images are scanned for vulnerabilities prior to deployment
Security Integration & Compliance
- Integrate security practices across the development lifecycle (Shift-Left security)
- Implement and support security scanning tools, including SAST, secrets scanning, and infrastructure security validation
- Enforce infrastructure and container hardening standards aligned with CIS benchmarks and federal security baselines
- Support compliance activities aligned with NIST SP 800-53 , FISMA , and related frameworks
- Produce audit-ready documentation to support assessments and compliance reviews
Collaboration & Engineering Practices
- Work closely with cross-functional engineering teams in an Agile/Scrum environment , participating in stand-ups, sprint planning, and technical reviews
- Follow established version control, peer review, and change management workflows
- Ensure all updates to production systems are properly reviewed and approved through formal processes
- Maintain clear and accurate documentation of changes to shared codebases, pipelines, and infrastructure
Key Deliverables
- Infrastructure as Code modules and documentation
- Ansible playbooks, roles, and execution logs
- GitHub Actions workflow configurations and pipeline documentation
- Dockerfiles, Kubernetes manifests, and Helm charts
- Security scanning configurations and compliance documentation
- Change logs and technical documentation supporting audit readiness
REQUIRED QUALIFICATIONS:
- Hands-on experience with Terraform and/or OpenTofu , including module development and state management
- Proficiency with Ansible , including playbooks, roles, and automation workflows
- Experience designing and maintaining CI/CD pipelines using GitHub Actions
- Working knowledge of Docker and Kubernetes for containerized environments
- Familiarity with security tools and practices, including:
- SAST tools (e.g., Semgrep, Checkov, tfsec or similar)
- Secrets detection tools (e.g., Gitleaks, Detect-Secrets)
- Policy-as-code frameworks (e.g., OPA/Rego)
- Proficiency with Git-based version control , including branching, pull requests, and protected branch workflows
- Experience working within structured change management and documentation processes
PREFERRED QUALIFICATIONS:
- Experience supporting federal or highly regulated environments
- Familiarity with NIST SP 800-53 , FISMA , and FedRAMP compliance requirements
- Experience working within AWS cloud environments
- Familiarity with secrets management solutions such as HashiCorp Vault
- Scripting experience in Python and/or Bash
IMRI offers top-tier benefits that include: medical coverage through nationally recognized carriers, ancillary coverages, paid vacation and sick leave in compliance with all state and local laws, 401(k) with company match, company paid life insurance and LTD, and several additional voluntary coverages.
Pay will be commensurate with the experience, skills, and qualifications that the candidate brings to the position.
Equal Employment Opportunity Statement
IMRI is an Equal Employment Opportunity employer. IMRI prohibits unlawful discrimination and harassment and provides equal employment opportunity to all applicants and employees consistent with applicable federal, state, and local laws. Employment decisions are based on qualifications, merit, business needs, and other lawful job-related factors without regard to race, color, religion, sex, national origin, age, disability, protected veteran status, genetic information, or any other characteristic protected by law. As a federal contractor, IMRI complies with Section 503 of the Rehabilitation Act and VEVRAA and takes affirmative action with respect to qualified individuals with disabilities and protected veterans as required by law.
Recommended Jobs
Pet Groomer
Job Description Job Description Job Overview: We are seeking a skilled Pet Groomer to join our team. The ideal candidate will have a passion for working with animals and providing top-notch gr…
Business Process Analyst - Active TS/SCI with Polygraph ONLY
Job Description Job Description Job Description: Distributed Solutions, Inc. (DSI) is a leading provider of knowledge-driven software solutions and subject-matter consulting services that addr…
CNA In home Caregiver
Job Description Job Description Salary: 18-25$ Join Commonwise Where Exceptional Care Begins with You Whether you prefer mornings, evenings, or nights, youre in control of your schedule. Yes…
School Psychologist (w/Sign On Bonus)
Job Description Job Description Salary: Commensurate with Experience Job Description Department: Student Services Job Title: School Psychologist (11 month full-time position…
Director, Digital Media, Audience Strategy and Offsite Retail Media
Foods you love. Brands you trust. And a career that empowers you to grow. At Nestlé USA, we’re all working towards the same goal – to delight and deliver for our consumers. With a rich portf…
Journeyman Software Developer
** Security Clearance Required Company Overview Systems Technology Forum LTD (STF) is an established industry partner with a passion for exceptional performance and an unwavering commitment to o…
Fire Protection Estimator - Special Projects
Job Description Job Description At ACI we build our company and our culture not by counting people, but by making our people count! Atlantic Constructors is seeking dynamic, motivated, career m…
Day Program Support Specialist / DSP
Job Description Job Description NO Nights or Weekends | Monday–Friday Day Schedule | Pay starts at $20-$22/hr Day Program Support Specialist (DSP) – Make a Real Impact Every Day Looking for…
Training Specialist
Job Description Job Description Training Specialist Location: Arlington, VA (On-Site) Citizenship: US only Clearance: Active TS/SCI (DHS EOD Suitability required) Company: Argo Cyber…
CDL Test Driver/Shop Clean-Up/Errands
Job Description Job Description DRIVER / CLEAN UP TECHNICIAN JOB DESCRIPTION: Parts pick-up & returns. Building/shop maintenance and clean-up. Pick up and deliver customers. Some…