{"schemaVersion":"jobsearcher.job.v1","id":"03d33f04c4687e513d2e85ef","url":"https://jobsearcher.com/jobs/03d33f04c4687e513d2e85ef","canonicalUrl":"https://jobsearcher.com/jobs/03d33f04c4687e513d2e85ef","title":"Sr. DevSecOps Engineer","description":"Overview\nSR. DEVSECOPS ENGINEER (PACMED):\n\nBowhead seeks a Sr. DevSecOps Engineer to support operational systems integration, development, test, evaluation, operation, sustainment, and maintenance using technologies and acquisition management to support technical, ancillary, and clinical support to military medical treatment facilities in the Pacific Region. This position will support building a next-generation automated compliance and AI‑driven security operations platform supporting DoD, federal health, and enterprise health‑care environments. The Sr. DevSecOps Engineer will provide deep experience in DISA STIGs, SCAP automation, RMF workflows, container security, SIEM/SOAR integrations, and AI‑assisted security operations.\n\nResponsibilities\nSCAP / STIG Automation\n\nBuild automated OpenSCAP pipelines to scan Ubuntu 24.04 LTS and other Linux hosts using DISA STIG benchmarks.\n\nIntegrate XCCDF and OVAL results into OpenRMF using automated ingestion workflows.\n\nDevelop hardened base images (VMs and containers) aligned to DISA STIG requirements.\n\nContainer Security\n\nIntegrate RapidFort scans into CI/CD pipelines.\n\nAutomate ingestion of SCAP JSON into OpenRMF.\n\nEnsure curated images remain compliant and low‑CVE.\n\nCompliance Operations (RMF/FedRAMP/CMMC)\n\nSupport generation of automated DISA checklists (CKLs) and POA&M updates.\n\nWork with compliance and engineering teams to resolve findings and track remediation progress via OpenRMF.\n\nSecurity Telemetry & SIEM Engineering\n\nDeploy/tune Wazuh agents across hosts and workloads.\n\nConfigure pipelines from Wazuh to Elastic to Tines.\n\nWrite and maintain Elastic SIEM detection rules.\n\nSOAR Automation & AI SOC Buildout\n\nDevelop Tines workflows to automate:\n\nSCAP ingestion\n\nRapidFort event processing\n\nElastic SIEM alert enrichment\n\nCompliance notifications & ticketing\n\nIntegrate LLMs to:\n\nSummarize alerts\n\nDraft POA&M entries\n\nGenerate remediation guidance\n\nProduce daily/weekly SOC and compliance reports\n\nInfrastructure & DevSecOps\n\nContribute to secure CI/CD pipelines, secrets management, system hardening, logging, and access control aligned with DoD RMF.\n\nQualifications\nMust-Have Technical Expertise\n\nFive to ten (10+) years Linux engineering with security hardening focus\n\nHands‑on experience with OpenSCAP, DISA STIGs, SCAP benchmarks, and STIG automation\n\nExperience working with OpenRMF (or similar RMF automation platforms)\n\nStrong knowledge of RMF, FedRAMP, or CMMC\n\nCI/CD pipeline experience (GitLab CI, GitHub Actions, Jenkins, etc.)\n\nHands‑on experience with Elastic Stack and Wazuh\n\nExperience deploying or integrating SOAR platforms (Tines preferred; XSOAR or Splunk SOAR acceptable)\n\nContainer security experience (RapidFort, Anchore, Trivy, Aqua, etc.)\n\nBonus Skills\n\nFamiliarity with ATO workflows (IL4/IL5, DoD impact levels)\n\nAI integration experience using OpenAI, Azure OpenAI, or similar\n\nPython or Bash scripting for automation\n\nExperience with NIST 800‑53, CNSSI 1253, or DoD Cybersecurity standards\n\nSoft Skills\n\nAbility to lead architecture decisions and mentor others\n\nStrong communicator capable of translating compliance needs into technical workflows\n\nAble to operate independently in a fast‑paced federal/healthcare environment\n\nComfortable producing documentation for audits and ATO packages\n\nPhysical Demands:\n\nMust be able to lift up to 20 pounds\n\nMust be able to stand and walk for prolonged amounts of time\n\nMust be able to twist, bend and squat periodically\n\nSECURITY CLEARANCE REQUIREMENTS: Must be able to obtain a security clearance at the Public Trust level. US Citizenship is a requirement.\n\n#J-18808-Ljbffr","company":"Uic Arctic Response Services","rawCompany":"uic arctic response services","city":"San Diego","state":"CA","isRemote":false,"isActive":false,"createdAt":"2026-06-17T03:31:42.104Z","occupations":[{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"15-1252.00","title":"Software Developers","slug":"software-developers"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"},{"code":"513210","title":"Software Publishers","slug":"software-publishers"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Sr. DevSecOps Engineer","description":"Overview\nSR. DEVSECOPS ENGINEER (PACMED):\n\nBowhead seeks a Sr. DevSecOps Engineer to support operational systems integration, development, test, evaluation, operation, sustainment, and maintenance using technologies and acquisition management to support technical, ancillary, and clinical support to military medical treatment facilities in the Pacific Region. This position will support building a next-generation automated compliance and AI‑driven security operations platform supporting DoD, federal health, and enterprise health‑care environments. The Sr. DevSecOps Engineer will provide deep experience in DISA STIGs, SCAP automation, RMF workflows, container security, SIEM/SOAR integrations, and AI‑assisted security operations.\n\nResponsibilities\nSCAP / STIG Automation\n\nBuild automated OpenSCAP pipelines to scan Ubuntu 24.04 LTS and other Linux hosts using DISA STIG benchmarks.\n\nIntegrate XCCDF and OVAL results into OpenRMF using automated ingestion workflows.\n\nDevelop hardened base images (VMs and containers) aligned to DISA STIG requirements.\n\nContainer Security\n\nIntegrate RapidFort scans into CI/CD pipelines.\n\nAutomate ingestion of SCAP JSON into OpenRMF.\n\nEnsure curated images remain compliant and low‑CVE.\n\nCompliance Operations (RMF/FedRAMP/CMMC)\n\nSupport generation of automated DISA checklists (CKLs) and POA&M updates.\n\nWork with compliance and engineering teams to resolve findings and track remediation progress via OpenRMF.\n\nSecurity Telemetry & SIEM Engineering\n\nDeploy/tune Wazuh agents across hosts and workloads.\n\nConfigure pipelines from Wazuh to Elastic to Tines.\n\nWrite and maintain Elastic SIEM detection rules.\n\nSOAR Automation & AI SOC Buildout\n\nDevelop Tines workflows to automate:\n\nSCAP ingestion\n\nRapidFort event processing\n\nElastic SIEM alert enrichment\n\nCompliance notifications & ticketing\n\nIntegrate LLMs to:\n\nSummarize alerts\n\nDraft POA&M entries\n\nGenerate remediation guidance\n\nProduce daily/weekly SOC and compliance reports\n\nInfrastructure & DevSecOps\n\nContribute to secure CI/CD pipelines, secrets management, system hardening, logging, and access control aligned with DoD RMF.\n\nQualifications\nMust-Have Technical Expertise\n\nFive to ten (10+) years Linux engineering with security hardening focus\n\nHands‑on experience with OpenSCAP, DISA STIGs, SCAP benchmarks, and STIG automation\n\nExperience working with OpenRMF (or similar RMF automation platforms)\n\nStrong knowledge of RMF, FedRAMP, or CMMC\n\nCI/CD pipeline experience (GitLab CI, GitHub Actions, Jenkins, etc.)\n\nHands‑on experience with Elastic Stack and Wazuh\n\nExperience deploying or integrating SOAR platforms (Tines preferred; XSOAR or Splunk SOAR acceptable)\n\nContainer security experience (RapidFort, Anchore, Trivy, Aqua, etc.)\n\nBonus Skills\n\nFamiliarity with ATO workflows (IL4/IL5, DoD impact levels)\n\nAI integration experience using OpenAI, Azure OpenAI, or similar\n\nPython or Bash scripting for automation\n\nExperience with NIST 800‑53, CNSSI 1253, or DoD Cybersecurity standards\n\nSoft Skills\n\nAbility to lead architecture decisions and mentor others\n\nStrong communicator capable of translating compliance needs into technical workflows\n\nAble to operate independently in a fast‑paced federal/healthcare environment\n\nComfortable producing documentation for audits and ATO packages\n\nPhysical Demands:\n\nMust be able to lift up to 20 pounds\n\nMust be able to stand and walk for prolonged amounts of time\n\nMust be able to twist, bend and squat periodically\n\nSECURITY CLEARANCE REQUIREMENTS: Must be able to obtain a security clearance at the Public Trust level. US Citizenship is a requirement.\n\n#J-18808-Ljbffr","datePosted":"2026-06-17T03:31:42.104Z","dateModified":"2026-06-17T03:31:42.104Z","hiringOrganization":{"@type":"Organization","name":"Uic Arctic Response Services","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Diego","addressRegion":"CA","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"03d33f04c4687e513d2e85ef"},"url":"https://jobsearcher.com/jobs/03d33f04c4687e513d2e85ef"}}