Sr. DevSecOps Engineer - Contingent

Public Trust Eligibility Required

This is a contingent position, meaning employment is dependent upon the successful award of the associated contract to Aretum and completion of any required background investigation or security clearance verification. 

About Aretum 

Aretum is a mission-driven organization committed to delivering innovative, technology-enabled solutions to our customers across defense, civilian, and homeland security sectors. Our teams work at the intersection of strategy, technology, and transformation, helping agencies solve their most critical challenges. We believe in investing in our people and creating a culture where collaboration, inclusion, and professional growth are at the forefront. 

Job Summary 

Aretum is seeking a skilled and motivated Sr. DevSecOps Engineer. As a Sr. DevSecOps Engineer you will provide your insight and expertise relating to the client's cloud and systems operations and management.

Due to the nature of our work as a federal consulting organization, employees may be expected to handle Controlled Unclassified Information (CUI) and must adhere to applicable safeguarding and compliance requirements.  

Responsibilities

• Design, operate, and continuously improve automated CI/CD pipelines using GitLab CI to support zero-downtime deployments across multiple environments.
• Support development teams with standardized deployment tooling, automation, and operational best practices.
• Produce monthly CI/CD pipeline performance reports, identifying risks, trends, and optimization opportunities.
• Administer and support containerized workloads using Kubernetes (EKS) and Docker-based container platforms.
• Configure and manage Linux-based servers and systems.
• Implement Infrastructure as Code (IaC) using Terraform and/or AWS CDK for repeatable, auditable deployments.
• Support provisioning and configuration of AWS services including EC2, EKS, ECS, S3, RDS, VPC, Lambda, and related services.
• Coordinate infrastructure changes without performing AWS account provisioning or organizational administration.
• Integrate security scanning into CI/CD pipelines using tools such as Trivy, AWS Inspector, and AWS Security Hub.
• Perform vulnerability triage and coordinate remediation with development teams in accordance with defined timelines.
• Implement and manage IAM least-privilege policies, secrets, and encryption using AWS KMS, Secrets Manager, and SSM.
• Ensure encryption in transit and at rest across all in-scope systems.
• Configure and maintain monitoring and observability using CloudWatch, Prometheus, Grafana, and centralized logging solutions.
• Support Tier 2 and Tier 3 incident response for production systems, meeting SLA requirements.
• Participate in root-cause analysis and continuous improvement initiatives.
• Participate in Agile sprints, including backlog grooming, sprint planning, stand-ups, and retrospectives.
• Track work in JIRA, using story-point estimation and sprint metrics.
• Support reprioritization of backlog items in coordination with the COR and Product Owner.
• Produce and maintain technical documentation covering architecture, pipelines, monitoring, security, and disaster recovery.
• Conduct knowledge transfer and mentoring sessions for staff and contractor teams.
• Support Business Continuity and Disaster Recovery (BCDR) planning, documentation, and exercises.
• Ensure all deliverables comply with ADA, Section 508, WCAG 2.2 A/AA, and digital accessibility standards.

5+ years of experience in the following areas:

• Experience managing and leading a dynamic DevOps team (detailed oriented, verbal proficiency, and experience with agile methodologies).
• Experience implementing and executing processes to create and fully maintain automated CI/CD pipelines for application deployment.
• Experience in managing version control systems.
• Experience in configuring, building, deploying and managing containers.
• Must possess systems engineering skills in configuring and managing Linux Systems.
• Must possess developer skills in programming languages, web frameworks, and databases.
• Experience deploying and configuring services using infrastructure-as-a-service providers (e.g., Amazon Web Services, Microsoft Azure, Google Compute Engine, RackSpace / OpenStack).
• Configure and manage Linux-based servers to serve a dynamic website.
• Debug cluster-based computing architectures.
• Use scripting or basic programming skills to solve problems.
• Installation and management of open-source monitoring tools.
• Configuration management tools (e.g., Puppet, Chef, Ansible, Salt).
• Architecture for continuous integration and deployment, and continuous monitoring.
• Containerization technologies (e.g., LXC, Docker, Rocket).

Preferred Qualifications

• Bachelor’s degree.
• Cloud certifications.

Travel Requirements

This is a remote position; however, occasional travel may be required based on project needs, client meetings, team collaboration events, or training sessions. Travel is expected to be less than 10% and will be communicated in advance whenever possible. 

EEO Statement
Aretum is committed to fostering a workplace rooted in excellence, integrity, and equal opportunity for all. We adhere to merit-based hiring practices, ensuring that all employment decisions are made based on qualifications, skills, and ability to perform the job, without preference or consideration of factors unrelated to job performance. 

As an Equal Opportunity Employer, Aretum complies with all applicable federal, state, and local employment laws. 

We are proud to support our nation’s veterans and military families, providing career opportunities that honor their service and experience. 

If you require reasonable accommodation during the hiring process due to a disability, please contact [email protected] for assistance. 

Equal Opportunity Employer/Veterans/Disabled 

U.S. Work Authorization

Applicants must be U.S. citizens or currently authorized to work in the United States on a full-time basis. This position supports a federal government contract and requires the ability to obtain and maintain a Public Trust or Suitability Determination, depending on the agency’s background investigation requirements. Sponsorship is not available.

• Health Care Plan (Medical, Dental & Vision)   
• Retirement Plan (401k)  
• Life Insurance (Basic, Voluntary & AD&D)   
• Paid Time Off  
• Family Leave (Maternity, Paternity)   
• Short Term & Long-Term Disability   
• Training & Development