Systems Engineer - Container Platform - Contingent

About AretumAretum is a mission-driven organization committed to delivering innovative, technology-enabled solutions to our customers across defense, civilian, and homeland security sectors. Our teams work at the intersection of strategy, technology, and transformation, helping agencies solve their most critical challenges. We believe in investing in our people and creating a culture where collaboration, inclusion, and professional growth are at the forefront.Job SummaryLead the deployment, hardening, and operational management of containerized applications on AWS ECS or OpenShift platform for a Federal cloud environment. Responsible for evaluating and hardening vendor-supplied containers, implementing container orchestration infrastructure-as-code, and establishing secure, compliant container operations that support millions of client transactions while meeting RMF/ATO requirements.Due to the nature of our work as a federal consulting organization, employees may be expected to handle Controlled Unclassified Information (CUI) and must adhere to applicable safeguarding and compliance requirements.ResponsibilitiesDeploy, configure, and manage AWS ECS or OpenShift container orchestration platform in production Federal environmentEvaluate vendor-supplied container images for security vulnerabilities, compliance gaps, and operational requirementsImplement container hardening strategies applying CIS benchmarks, DSTI STIGs, and federal security baselinesConfigure container orchestration including task/service definitions (ECS) or deployments/operators (OpenShift)Manage container lifecycle including image versioning, updates, patching, and rollback proceduresImplement horizontal auto-scaling policies based on CPU, memory, custom metrics, and workload patternsEstablish container networking including service discovery, ingress/egress controls, and inter-container communicationPerform container image scanning using tools such as Prisma Cloud, Aqua Security, Twistlock, or AWS ECR scanningRemediate container vulnerabilities identified through scanning and security assessmentsImplement runtime security controls including container isolation, resource limits, and security contextsConfigure secrets management for containerized applications using AWS Secrets Manager or HashiCorp VaultApply least-privilege principles to container IAM roles and service accountsImplement container image signing and verification workflowsDocument container security controls and provide evidence for RMF/ATO security assessmentDevelop and maintain infrastructure-as-code using Terraform or AWS CloudFormation for container platformBuild automated deployment pipelines for container infrastructure and application updatesCreate repeatable, version-controlled infrastructure patterns for scaling to 130+ system instancesImplement GitOps workflows for infrastructure change management and audit trailsDevelop automation scripts for container platform management and troubleshootingEstablish configuration baselines and drift detection mechanismsDesign and implement multi-AZ container deployments ensuring high availability during infrastructure failuresConfigure health checks, readiness probes, and liveness probes for container self-healingImplement disaster recovery procedures including backup strategies for persistent container dataEstablish resource reservation and quality-of-service policies to prevent resource contentionDesign capacity planning and scaling strategies to handle variable workloads serving millions of clientsImplement zero-downtime deployment strategies including blue-green and rolling updatesCreate comprehensive operational runbooks for container platform management, troubleshooting, and incident responseDocument deployment procedures, configuration baselines, and security hardening stepsDevelop standard operating procedures (SOPs) for routine maintenance and emergency proceduresMaintain container platform architecture diagrams and configuration documentation for RMF complianceCreate knowledge transfer materials for scaling operations teamRequirementsBachelor's degree in Computer Science, Information Systems, Information Technology, or related technical fieldRelevant professional certifications and demonstrated experience may supplement education5-7 years in systems engineering, DevOps, or infrastructure roles3+ years hands-on experience with container platforms (ECS, OpenShift, or Kubernetes) in production environments2+ years working with AWS infrastructure and servicesExperience with container hardening, security scanning, and vulnerability remediationStrong analytical and troubleshooting skills with systematic problem-solving approachAttention to detail and commitment to security-first operationsAbility to work independently and manage multiple concurrent infrastructure workstreamsEffective written and verbal communication for documentation and cross-team collaborationAdaptable to fast-paced, deadline-driven environment with changing requirementsProactive mindset for identifying and resolving potential issues before they impact operationsPreferred RequirementsAWS Certified Solutions Architect - Associate or ProfessionalCertified Kubernetes Administrator (CKA) or Red Hat Certified Specialist in OpenShiftDocker Certified AssociateExperience with service mesh technologies (Istio, AWS App Mesh)Knowledge of container vulnerability management platforms (Prisma, Aqua, Twistlock)Federal government contracting or DoD infrastructure experienceExperience with immutable infrastructure and GitOps methodologiesTravel RequirementsThis is a remote position; however, occasional travel may be required based on project needs, client meetings, team collaboration events, or training sessions. Travel is expected to be less than 10% and will be communicated in advance whenever possible.EEO StatementAretum is committed to fostering a workplace rooted in excellence, integrity, and equal opportunity for all. We adhere to merit-based hiring practices, ensuring that all employment decisions are made based on qualifications, skills, and ability to perform the job, without preference or consideration of factors unrelated to job performance.As an Equal Opportunity Employer, Aretum complies with all applicable federal, state, and local employment laws.We are proud to support our nation's veterans and military families, providing career opportunities that honor their service and experience.If you require reasonable accommodation during the hiring process due to a disability, please contact hr@aretum.com for assistance.Equal Opportunity Employer/Veterans/DisabledU.S. Work AuthorizationDue to federal contract requirements, only U.S. citizens are eligible for this position. This position supports a federal government contract and requires the ability to obtain and maintain a Public Trust or Suitability Determination, depending on the agency's background investigation requirements.BenefitsHealth Care Plan (Medical, Dental & Vision)Retirement Plan (401k)Life Insurance (Basic, Voluntary & AD&D)Paid Time OffFamily Leave (Maternity, Paternity)Short Term & Long-Term Disability