DevSecOps Engineer at Dark Wolf Solutions

<div> <p data-path-to-node="0"><span style="font-size: 10pt;"><strong>Dark Wolf</strong> is seeking a <strong>DevSecOps Engineer</strong> to support the development and sustainment of a cloud-based platform that enables cyber operations. The successful candidate will architect a centralized secure image factory, integrate proprietary scanning tools, and manage the supply chain of hardened containers. The team provides support to enhance and develop new applications, analytics, and services for the customer and to modernize capabilities through an agile, evolving requirement identification and prioritization process. This position will call for support at a main DW supported office location. Tasks may include assisting with:</span></p> <ul> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Deploying and maintaining a centralized artifact repository on cloud-native architecture (AWS/Azure).</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Building and maintaining CI/CD pipelines to automate the ingestion, scanning, and publishing of secure container images.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Integrating low-CVE base images (e.g., via Chainguard) into the development supply chain.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Implementing and managing automated compliance scanning tools (SAST/DAST/Fuzzing) within the build pipeline.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Implementing Infrastructure as Code (IaC) using Terraform or similar tools to stand up secure environments.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Developing best practices to increase the velocity of secure image updates and patch management.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Ensuring system performance and availability while troubleshooting and resolving technical issues within the container lifecycle.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Collaborating with other teams to develop and implement technical solutions for secure software delivery.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Automating repetitive tasks to increase efficiency and reduce errors in the image hardening process.</span></li> <li style="font-size: 10pt;" data-path-to-node="1,0,0"><span style="font-size: 10pt;">Documenting infrastructure configurations, processes, and procedures for secure supply chain management.</span></li> </ul> <strong><span style="font-size: 10pt;">Required Qualifications:</span></strong> <ul> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Bachelor’s degree in IT Security, Information Systems, or equivalent</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Minimum of 4+ years of experience working with commercial cloud service providers (AWS, Azure, or GCP)</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Extensive experience with Containerization (Docker, Kubernetes) and Container Security</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Experience designing Infrastructure as Code solutions using Terraform or Ansible</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Strong proficiency in CI/CD tooling (GitLab CI, Jenkins, ArgoCD, or similar)</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Experience with Linux administration and hardening</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Demonstrated knowledge of DevSecOps processes and software supply chain security (SBOMs, signing, verification)</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">Strong analytical and problem-solving skills with the ability to work independently and manage multiple projects</span></li> <li style="font-size: 10pt;" data-path-to-node="4,0,0"><span style="font-size: 10pt;">US Citizenship and ability to be clearable up to the Top Secret clearance with SCI eligibility</span></li> </ul> <h3 data-path-to-node="5"><span style="font-size: 10pt;">Desired Qualifications:</span></h3> <ul> <li data-path-to-node="5">Experience with Chainguard images and low-CVE container strategies</li> <li data-path-to-node="5">Experience working with Platform One, Iron Bank, or similar DoD software factories</li> <li data-path-to-node="5">Experience with proprietary fuzzing or scanning pipelines</li> <li data-path-to-node="5">Experience deploying and maintaining AWS services including ECR, S3, and RDS</li> <li data-path-to-node="5">Industry certifications, such as AWS Certified Solutions Architect, Security+, or CCNA.</li> </ul> <p>This position will be supported at a hybrid capacity at any of the following DW Office locations: Herndon, VA, Omaha, NE, Colorado Springs, CO, Tampa, FL.&nbsp;</p> </div> <div> <div> <p>The estimated salary range for this position is $150,000.00 - $180,000.00, commensurate on experience and technical skillset.&nbsp;</p> <p>We are strictly looking for direct, full-time W2 employees. We do not engage with third-party staffing agencies, C2C, or 1099 independent contractors for this role.</p> <p>We are proud to be an EEO/AA employer Minorities/Women/Veterans/Disabled and other protected categories.<br>&nbsp;<br>In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.</p> </div> </div>