DevSecOps Engineer

Mid-Level DevSecOps Engineer Position SummaryKeenLogic is seeking a Mid-Level DevSecOps Engineer to support the Congressional Budget Office (CBO) by designing, automating, securing, and maintaining cloud and hybrid infrastructure environments. The engineer will leverage Infrastructure as Code (Terraform/OpenTofu), Configuration as Code (Ansible), CI/CD automation (GitHub Actions), container technologies (Docker/Kubernetes), and DevSecOps best practices to support secure, reliable, and scalable technology operations while ensuring compliance with CBO engineering and cybersecurity standards.Work is primarily performed remotely; however, contractor personnel must be available to provide onsite support at the CBO Ford House Office Building in Washington, DC, as directed by the Government. KeenLogic offers Fortune 500-level benefits, including health, dental, and vision insurance, PTO, 401(k), and life insurance. Required QualificationsUS citizen and eligible for a Public Trust clearance Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related discipline (or equivalent experience) 5+ years of DevSecOps, Cloud Engineering, or Infrastructure Automation experience Hands-on experience with: Terraform/OpenTofu Ansible GitHub Actions Docker Kubernetes Git-based development workflows Experience integrating: SAST tools DAST tools Secrets scanning Policy-as-code frameworks Experience supporting AWS cloud environments. Strong scripting experience in Python and/or Bash. Experience supporting federal security frameworks and compliance requirements. Key Responsibilities: Infrastructure as Code (Terraform/OpenTofu) Maintain and enhance existing Terraform and OpenTofu environments Develop reusable infrastructure modules Manage state files and remote backends Execute infrastructure deployments through approved change control processes Refactor legacy infrastructure code to current standards Configuration Management (Ansible) Develop and maintain Ansible playbooks and roles Automate server configuration and application deployment Support patch management and compliance enforcement Maintain inventory and configuration documentation CI/CD Engineering (GitHub Actions) Develop and maintain GitHub Actions workflows Automate build, test, security scanning, and deployment processes Implement SAST, dependency scanning, secrets detection, and policy-as-code controls Support code review and release management processes Containerization & Kubernetes Develop and maintain Dockerfiles Support Kubernetes deployments and orchestration Manage manifests, Helm charts, namespaces, and RBAC configurations Perform container vulnerability scanning and remediation Support cluster monitoring and troubleshooting Security & Compliance Integrate security controls throughout CI/CD pipelines Support vulnerability management and remediation efforts Assist with compliance, audit, and security assessment activities Maintain technical documentation and operational runbooks Powered by JazzHRLjfqPjCORp