DEVSECOPS ENGINEER

Svitla Systems -
Nowshera Murai, Uttar Pradesh

Apply Now

Job details

Full-time
9 days ago

Qualifications

CI/CD
SSO
Cloud infrastructure
Azure
FedRAMP
Kubernetes
Ansible
Supply chain
Git
RBAC
AWS
NIST standards
Terraform
Continuous integration
GitHub
Jenkins
GitLab
Identity & access management

Full job description

Apply Now

DEVSECOPS ENGINEER

Apply Now

COUNTRY

United States

FORMAT

Remote

Svitla Systems Inc. is looking for a DevSecOps Engineer for a full-time remote position (40 hours per week) in the USA.

Our client is a cloud-native cybersecurity company that helps organizations automatically and continuously minimize the attack surface of their cloud workloads.

You'll design, deploy, and maintain secure, cloud-native infrastructure supporting Department of War customers. You will work across container platforms, CI/CD pipelines, and government cloud environments to deliver hardened, compliant software systems at scale. This role sits at the intersection of platform engineering, security, and DevSecOps and requires a strong understanding of DoW policies, toolchains, and accreditation processes.

Note: A candidate must be a U.S. citizen.

Technical Environment:

Container Orchestration: Kubernetes (EKS, AKS, RKE2, OpenShift)
Package Management: Helm, Kustomize
Policy & Mesh: Istio, OPA Gatekeeper, Kyverno, Calico
CI/CD: GitLab CI/CD, GitHub Actions, Jenkins
Cloud: AWS GovCloud (East/West), Azure Government
Registries: Iron Bank/registry-1, Harbor, Quay, AWS ECR
Observability: Prometheus, Grafana, Datadog, Loki, OpenTelemetry
Security Scanning: Trivy, Grype, Anchore, RapidFort, Twistlock/Prisma
IaC: Terraform, Ansible, Crossplane.

REQUIREMENTS

4+ years of hands-on experience with Kubernetes in production environments.
Demonstrated experience deploying and managing applications via Helm in multi-environment configurations.
Working knowledge of Istio, OPA Gatekeeper, Kyverno, or equivalent Kubernetes policy and service mesh tooling.
Knowledge of at least one major CI/CD platform: GitLab CI, GitHub Actions, Jenkins, or equivalent.
Hands-on experience with AWS and/or Azure cloud platforms, including IAM, networking, storage, and managed Kubernetes services (EKS, AKS).
Understanding of container image workflows: building, scanning, hardening, and distributing images via OCI registries.
Understanding of monitoring and observability tools, including Prometheus, Grafana, and/or Datadog.
Experience with Single Sign-On (SSO) and identity federation; familiarity with Keycloak or equivalent OIDC/SAML providers.

NICE TO HAVE

Familiarity with Iron Bank, registry-1, Platform One, or Big Bang-based software factory environments.
Familiarity with GitLab Ultimate features, including security dashboards and dependency scanning.
Experience supporting Air Force, Space Force, Navy, or other military branch programs.
Exposure software supply chain security tooling: Sigstore/cosign, vulnerability scanners, SBOM generation, and compliance scanning tools.
Prior experience working with Cato, continuous authorization, or Ongoing Authorization environments.
CKA, CKS, AWS GovCloud certifications, or equivalent credentials
Experience with AWS GovCloud and/or Azure Government.
Understanding of DoD compliance frameworks: NIST 800-53, STIGs, RMF, FedRAMP.
Experience with container registry management and observability in Kubernetes environments, enabling secure image lifecycle workflows, compliance scanning, and end-to-end system visibility across production platforms.
Active DoW Security Clearance (Secret or higher) is a strong advantage.

RESPONSIBILITIES

Design and maintain Kubernetes-based infrastructure, including cluster provisioning, RBAC configuration, network policy, and workload management.
Package and deploy applications using Helm charts; maintain chart repositories and manage release lifecycle across environments.
Implement and enforce policy controls using Istio service mesh, OPA Gatekeeper, Kyverno, and related Kubernetes admission controllers.
Build and maintain CI/CD pipelines using GitLab CI, GitHub Actions, Jenkins, or equivalent tooling; integrate automated security scanning and compliance gates.
Deploy and operate workloads on AWS GovCloud and Azure Government; architect for high availability, disaster recovery, and cross-region compliance requirements.
Manage and harden container images; integrate with Iron Bank, Platform One, and other DoW-approved registry sources.
Configure and maintain observability stacks, including Prometheus, Grafana, and Datadog; develop alerting, dashboards, and SLO frameworks.
Participate in ATO processes, support STIG/CIS compliance scanning, and contribute to System Security Plans (SSPs) and documentation artifacts.
Collaborate with development, security, and program teams to establish and refine DevSecOps practices across the software delivery lifecycle.
Support air-gapped and classified environment deployments; design solutions for offline image transfer, registry mirroring, and artifact management.
Coordinate with government platform teams and managed service providers to integrate and sustain vendor tooling within approved DoD software factories.

WE OFFER

US and EU projects based on advanced technologies.
Competitive compensation based on skills and experience.
Flexibility in workspace, either remote or our welcoming office.
Bonuses for article writing, public talks, and other activities.
Free tech webinars and meetups organized by Svitla.
Regular corporate online activities.
Awesome team, friendly and supportive community!

ABOUT SVITLA

Svitla Systems is a global digital solutions company headquartered in the U.S. and operating across the Americas, Europe, Asia, and APAC. Since 2003, we have served a wide range of clients — from innovative start-ups to Fortune 500 companies.

Our success is built on partnership. By integrating seamlessly with clients’ teams, we create lasting collaborations that drive real results.

We are strong advocates of workplace flexibility, remote culture, individual approach to professional and personal growth.

Svitla is proud to be an equal opportunity employer. All qualified applicants will receive consideration for cooperation without regard to age, gender identity, sexual orientation, religion, race, color, national origin, disability, or any other characteristic protected by applicable law.

Our global mission is to build a business that contributes to wellbeing of our partners, personnel, and their families, improves our communities, and makes a lasting difference in the world.

Together, we are coding a brighter tomorrow — and living it.

Join us!

LET'S MEET IN PERSON

Anastasiia Kosheliuk

RECRUITER

Email:

[email protected]

LinkedIn:

Anastasiia Kosheliuk

Apply Now

Anastasiia Kosheliuk

RECRUITER

Jobseeker tools

Employer Tools

Browse

Stay Connected