Search
Header navigation

DevSecOps Engineer I

ATTAINX INC
locationHerndon, VA 20170, USA
PublishedPublished: 5/5/2026
Full Time

Job Title: DevSecOps Engineer I
Location: Remote
Security Clearance: USDA Public Trust

The DevSecOps Engineer I supports secure, compliant, and efficient system operations across the full Software Development Life Cycle (SDLC), with a focus on release management, security compliance, audit readiness, and governance.

This role ensures that all system changes, releases, and operational activities meet USDA, FPAC, and NRCS standards. The engineer works closely with the release management team, platform team, and government stakeholders to manage tickets, enforce change control, maintain documentation, and support audit and compliance activities.

Required Qualifications:

Bachelor’s degree in information technology, Cybersecurity, or related field. Experience supporting USDA, NRCS, or other federal geospatial programs. 1–3 years of experience in DevOps, DevSecOps, IT operations, or release management support roles. Experience supporting the full SDLC and release management lifecycle (non-development focus). Experience using SonarQube or equivalent static analysis tools to review and resolve audit findings and enforce coding and security standards.Experience with CI/CD pipelines (e.g., Jenkins, GitLab CI, Azure DevOps) from an operational or governance perspective. Experience with Ticketing systems (e.g., Jira) and version control systems (e.g., Git) for release tracking. Proficiency in Security frameworks (e.g., NIST, OWASP), Change management and ITIL processes. Experience in creating and maintaining documentation, SOPs, and audit artifacts. Attention to detail with a focus on compliance, traceability, and audit readiness.Must be able to obtain a Public Trust Security Clearance.


Preferred Qualifications:

Familiarity with cloud environments (e.g., AWS) from an operational perspective and containerized environments (e.g., Docker, Kubernetes) at a high level. Knowledge of Section 508 accessibility compliance. Experience supporting security audits, ATO processes, or compliance reviews.

Key Responsibilities:

Support planning, coordination, and execution of secure, controlled, and auditable releases. Ensure all releases meet quality, security, and operational acceptance criteria before deployment. Maintain and validate release artifacts, including checklists, test evidence, security results, and rollback plans. Write, track, and manage security, compliance, and operational tickets in alignment with SLAs. Coordinate and track vulnerability remediation and support security assessment activities. Maintain audit-ready documentation and evidence for all activities, ensuring traceability across tickets, changes, and releases. Develop and manage SOPs, runbooks, and operational documentation in approved repositories. Enforce change management and governance processes, ensuring proper authorization for all work. Support work intake, backlog normalization, and ticket lifecycle management in tools such as Jira. Track metrics, risks, and issues, including maintaining risk logs and reporting status to stakeholders. Support SDLC governance and DevSecOps practices, including CI/CD pipeline compliance and process improvement. Assist with operations and maintenance activities, including defect triage, patch coordination, and Tier 3 support documentation.

Work Location and Schedule:

Remote work is approved. Contractor personnel must have access to the internet and Government network and be available to federal PMs, COs, CORs, and TPOCs during core hours (9:00 AM to 3:00 PM EST).

Normal duty hours are 6:00 AM to 6:00 PM EST, Monday through Friday, excluding federal holidays.

After-hours and weekend work may be required to support production releases.

Travel within fifty (50) miles of the Contractor’s facilities may be required with COR approval.


Security Requirements:

Must be able to obtain and maintain a USDA security background investigation (FBI fingerprint check and eQIP).

Must comply with all NIST, USDA, and HSPD–12 security training and reporting requirements.

Must complete mandatory training: Information Security Awareness (annually) and Section 508 (within 45 days of assignment).


About Us:

AttainX Inc. is a Women Owned Small Business (WOSB), Economically Disadvantaged WOSB (EDWOSB), CMMC Level 2, CMMI Level 3, ISO 9001:2015 certified QMS and Silver Level SAFe Partner. For more than 15 years, AttainX, Inc. has delivered emergent technologies, software products, and high-quality services that meet the needs of our Federal Government customers.

The last 4 years have shown significant company growth as we have increased our contracts portfolio and hold the “Best in Class” contract vehicles, GSA MAS and OASIS Small Business and 8(a) Pools 1, 2 and 3. In addition, we are prime on several Agency Specific IDIQs and BPAs with the National Oceanic and Atmospheric Administration, Department of Energy, Navy, Health and Human Service, USCIS and the Defense Intelligence Agency.

AttainX is dedicated to quality and best practices for the services we provide. We understand our people are the key ingredient to ensuring our customers Mission and Goals are met with excellence.

Benefits:

Competitive compensation and benefits packages including paid vacation, medical, dental, vision, matching 401K plan, tuition/training reimbursement, and Long & Short-Term Disability.

EEO Commitment:

AttainX is an equal employment opportunity employer, committed to providing a workplace free from discrimination based on Title VII of the Civil Rights Act, VEVRAA and Section 503, or other status protected by applicable federal, state, local, or international law. These protections also extend to applicants.

Accommodations:

Individuals with a disability who would like to request a reasonable workplace accommodation may send an email to Human Resources indicating the specifics of the assistance needed.

Physical Demands:

Sitting and working on a computer for long, continuous periods each day; effective communications by telephone, email, and face-to-face; standing, walking, and sitting; handling and feeling objects or controls; reaching; talking and hearing; lifting and/or moving up to 10 pounds; and specific vision abilities including close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust and focus.

Work Environment: The noise level in the work environment is usually moderate.





PI284317489