Job Details:
Job Title: Lead DevSecOps pipeline engineer (platform DRI) - CI/CD Pipeline Development Specialty
Location: 100% Remote. On-site is required if the candidate is based in the Boston area.
Duration: 6+ Months Contract
JOB Description:
CI/CD Pipeline Development Specialty
About the Role
Client seeking you will specialize in CI/CD pipeline development, working alongside our lead pipeline engineer to evolve and scale the centralized DevSecOps pipeline platform that embeds automated security scanning, code-quality analysis, software bill-of-materials (SBOM) generation, and policy-based release gating directly into application teams’ delivery pipelines.
Your focus is adapting and scaling the pipeline across a wide range of teams and with different build systems, repository structures, and pipeline patterns. We are looking for deep, hands-on GitLab and Jenkins CI/CD expertise over familiarity with any single security product.
What you will be doing
- Adapting and extending our pipeline security scanning toolset that runs on both GitLab and Jenkins so it integrates cleanly across diverse application teams — inherited/templated service pipelines, monorepos, shared-pipeline repositories that check out the service repo at runtime, multi-stage builds, and a range of language ecosystems and build tools.
- Designing and maintaining reusable pipeline building blocks — CI/CD components and templates with typed inputs, YAML anchors / extends / !reference, rules: and needs:, parent/child and multi-project pipelines, and dynamically generated downstream pipelines.
- Partnering with application teams to onboard them onto the platform, troubleshoot pipeline failures, and reduce time-to-adoption — backed by clear documentation, working examples, and runbooks.
- Building and maintaining pipeline tooling and automation in Bash and Python — findings parsing and formatting, gating logic, metrics/telemetry collection, and compliance artifacts such as SBOM generation and evidence bundles.
- Strengthening the platform’s own engineering quality — automated tests for pipeline logic, versioned releases and ref strategies, change review, and CODEOWNERS-gated configuration.
- Iterating on policy-as-code, release gating, and on the compliance/metrics pipeline.
We are excited if you have some of these specialties
The core requirement is deep, hands-on GitLab CI/CD expertise. Beyond that, we are excited if you bring some of the following — and because the platform is tool-agnostic, breadth across these areas matters more than expertise in any single product:
- Deep GitLab Runner knowledge — Docker and Kubernetes executors, runner tags and job routing, executor selection, arm64, and debugging pending/stuck jobs.
- A track record of building reusable, multi-team CI/CD pipelines — ideally an internal “golden” or paved-path pipeline adopted across an organization, not just a single team’s pipeline.
- Strong scripting in Bash and Python for pipeline automation and tooling.
- 3+ years of software engineering with at least one general-purpose programming language (e.g., Python, Go, Rust, C).
- Solid container fundamentals — Docker/OCI image build and push, registries, multi-stage builds, and image references/digests.
- Familiarity with other CI technologies — Jenkins, Bamboo, Circle, Team City, etc.
- Comfort across heterogeneous build ecosystems — Node.js, Python, Java (Maven/Gradle), Go and build/package management such as Bazel or Bun/NPM.
- HashiCorp Vault — For secret handling
- Multi Cloud — Must be strong in AWS or Google Cloud Platform, bonus points for Azure familiarity