{"schemaVersion":"jobsearcher.job.v1","id":"e8f245861f668076dc5c38e6","url":"https://jobsearcher.com/jobs/e8f245861f668076dc5c38e6","canonicalUrl":"https://jobsearcher.com/jobs/e8f245861f668076dc5c38e6","title":"DevSecOps Engineer","description":"You've stumbled upon the rare B Corp government contractor! At TCG, we aim to prove that businesses can be good to their employees and responsible to their community while being profitable. We're an award-winning IT solutions provider to the Federal government seeking a DevSecOps Engineer to join our project team.\r\nThe DevSecOps Engineer will help design, develop, and implement solutions for one of our government customers.\r\nU.S. citizenship is required for this role. In addition, the selected applicant must submit to a government background investigation and be favorably adjudicated before their first day.\r\nThis is a full-time, short-term position (September2026). There is a remote possibility that this role may be extended past this date. This is primarily a remote position. However, the selected candidate may be required to be on site occasionally and therefore must live within commuting distance of Washington, D.C.\r\nResponsibilities\r\nDesign, implement, and maintain CI/CD pipelines in an AWS environment, leveraging tools like GitLab.\r\nManage and deploy containerized applications using Kubernetes and Docker in an AWS environment.\r\nConfigure and maintain AWS environments for various applications, including defining and applying baselines and security policies.\r\nImplement security best practices throughout the DevSecOps lifecycle, focusing on vulnerability management and secure configuration.\r\nIntegrate SAST and DAST tools, such as Sonarqube and Invicti, into the CI/CD pipeline for analysis of code and container images.\r\nEnsure application security specifically for containers in the Kubernetes and AWS environments.\r\nCollaborate with development teams to resolve security vulnerabilities reported by tools like Tenable and track resolution progress.\r\nAutomate deployment and configuration management tasks across development, test, and production environments, leveraging tools like Ansible.\r\nImplement and maintain monitoring and logging solutions (e.g. Splunk or ELK Stack) to ensure system uptime, performance, and application health.\r\nSupport platform operations, including updates, patching, and system maintenance for the underlying AWS cloud infrastructure.\r\nReview and suggest improvements and changes to the current cloud architecture to aid in scaling cloud presence.\r\nRequired Skills\r\nFive (5) plus years of experience in DevSecOps engineering, with at least 3+ years managing and maintaining AWS ecosystems.\r\nExpertise in managing and deploying containerized applications using Kubernetes and Docker.\r\nProficiency with AWS cloud security, including configuring baselines and security policies to create a Zero Trust Architecture for tools such as encrypted S3 buckets, IAM role, and service/network logging.\r\nProficiency in designing, implementing, and maintaining CI/CD pipelines using tools such as GitLab, and utilizing tools, such as Terraform or Cloud Formation, to implement an Infrastructure as Code methodology.\r\nHands-on experience with security scanning and analysis tools, including SAST/DAST (e.g., Sonarqube, Invicti) and vulnerability management (e.g., Tenable).\r\nAbility to work in an agile or iterative development environment.\r\nExperience authoring and debugging Dockerfiles for web applications, preferably for Docker images using Java or Angular.\r\nExperience standing up and managing an AWS/Gitlab architecture, preferably in a non-DOD federal government space.\r\nPreferred Skills\r\nDevSecOps relevant certifications in Cloud platforms (AWS preferred).\r\nExperience ensuring application security for Java Spring Boot API containers.\r\nPractice working with regulatory, legal, or government data sets.\r\nEducation\r\nBachelor's degree in Information Systems, Computer Engineering, Computer Science or a related discipline.\r\nTCG does not discriminate based on race, sex, color, religion, national origin, age, disability, caste, or veteran status.\r\nTCG offers a comprehensive benefits package, including health care, 401K, parental leave, adoption assistance, financial planning services, student loan repayment assistance, and a training budget.\r\nSalary Range: $140,000 - $160,000\r\nJ-18808-Ljbffr","company":"Tcg","rawCompany":"tcg","city":"Washington","state":"DC","isRemote":false,"isActive":false,"createdAt":"2026-04-12T20:00:31.732Z","occupations":[{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1252.00","title":"Software Developers","slug":"software-developers"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"},{"code":"513210","title":"Software Publishers","slug":"software-publishers"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"DevSecOps Engineer","description":"You've stumbled upon the rare B Corp government contractor! At TCG, we aim to prove that businesses can be good to their employees and responsible to their community while being profitable. We're an award-winning IT solutions provider to the Federal government seeking a DevSecOps Engineer to join our project team.\r\nThe DevSecOps Engineer will help design, develop, and implement solutions for one of our government customers.\r\nU.S. citizenship is required for this role. In addition, the selected applicant must submit to a government background investigation and be favorably adjudicated before their first day.\r\nThis is a full-time, short-term position (September2026). There is a remote possibility that this role may be extended past this date. This is primarily a remote position. However, the selected candidate may be required to be on site occasionally and therefore must live within commuting distance of Washington, D.C.\r\nResponsibilities\r\nDesign, implement, and maintain CI/CD pipelines in an AWS environment, leveraging tools like GitLab.\r\nManage and deploy containerized applications using Kubernetes and Docker in an AWS environment.\r\nConfigure and maintain AWS environments for various applications, including defining and applying baselines and security policies.\r\nImplement security best practices throughout the DevSecOps lifecycle, focusing on vulnerability management and secure configuration.\r\nIntegrate SAST and DAST tools, such as Sonarqube and Invicti, into the CI/CD pipeline for analysis of code and container images.\r\nEnsure application security specifically for containers in the Kubernetes and AWS environments.\r\nCollaborate with development teams to resolve security vulnerabilities reported by tools like Tenable and track resolution progress.\r\nAutomate deployment and configuration management tasks across development, test, and production environments, leveraging tools like Ansible.\r\nImplement and maintain monitoring and logging solutions (e.g. Splunk or ELK Stack) to ensure system uptime, performance, and application health.\r\nSupport platform operations, including updates, patching, and system maintenance for the underlying AWS cloud infrastructure.\r\nReview and suggest improvements and changes to the current cloud architecture to aid in scaling cloud presence.\r\nRequired Skills\r\nFive (5) plus years of experience in DevSecOps engineering, with at least 3+ years managing and maintaining AWS ecosystems.\r\nExpertise in managing and deploying containerized applications using Kubernetes and Docker.\r\nProficiency with AWS cloud security, including configuring baselines and security policies to create a Zero Trust Architecture for tools such as encrypted S3 buckets, IAM role, and service/network logging.\r\nProficiency in designing, implementing, and maintaining CI/CD pipelines using tools such as GitLab, and utilizing tools, such as Terraform or Cloud Formation, to implement an Infrastructure as Code methodology.\r\nHands-on experience with security scanning and analysis tools, including SAST/DAST (e.g., Sonarqube, Invicti) and vulnerability management (e.g., Tenable).\r\nAbility to work in an agile or iterative development environment.\r\nExperience authoring and debugging Dockerfiles for web applications, preferably for Docker images using Java or Angular.\r\nExperience standing up and managing an AWS/Gitlab architecture, preferably in a non-DOD federal government space.\r\nPreferred Skills\r\nDevSecOps relevant certifications in Cloud platforms (AWS preferred).\r\nExperience ensuring application security for Java Spring Boot API containers.\r\nPractice working with regulatory, legal, or government data sets.\r\nEducation\r\nBachelor's degree in Information Systems, Computer Engineering, Computer Science or a related discipline.\r\nTCG does not discriminate based on race, sex, color, religion, national origin, age, disability, caste, or veteran status.\r\nTCG offers a comprehensive benefits package, including health care, 401K, parental leave, adoption assistance, financial planning services, student loan repayment assistance, and a training budget.\r\nSalary Range: $140,000 - $160,000\r\nJ-18808-Ljbffr","datePosted":"2026-04-12T20:00:31.732Z","dateModified":"2026-04-12T20:00:31.732Z","hiringOrganization":{"@type":"Organization","name":"Tcg","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Washington","addressRegion":"DC","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"e8f245861f668076dc5c38e6"},"url":"https://jobsearcher.com/jobs/e8f245861f668076dc5c38e6"}}