DevSecOps Engineer - Clearance Required

Overview

LMI seeks an experienced Senior DevSecOps Engineer to support the U.S. Army Center for Initial Military Training's (CIMT) Holistic Health & Fitness Management System (H2FMS).

H2FMS is a secure environment operating in Army GovCloud, integrating the vendor-provided H2F data capture application with cloud hosting, data pipelines, analytics models, and a custom user interface. The

Senior DevSecOps Engineer will lead the automation, security, deployment, and operational sustainment of H2FMS in alignment with RMF, cATO, and Zero Trust principles.

This senior technical role works closely with Cloud Architects, Cybersecurity Engineers, Data Engineers, the Data Scientist SME, Full Stack Developers, and the Technical PM to ensure stable, compliant, and automated software delivery within the secure Army environment.

LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed. Investing in technology and prototypes ahead of need, LMI brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed.

Leveraging our mission-ready technology and solutions, proven expertise in federal deployment, and strategic relationships, we enhance outcomes for the government, efficiently and effectively. With a focus on agility and collaboration, LMI serves the defense, space, healthcare, and energy sectors-helping agencies navigate complexity and outpace change. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value.

Responsibilities

• Design, implement, and maintain CI/CD pipelines supporting H2FMS application components (UI, data services, integrations).
• Develop and maintain Infrastructure-as-Code (IaC) using Terraform, CloudFormation, or ARM/Bicep to automate environment provisioning.
• Implement automated security scanning for:
  • Static code analysis (SAST)
  • Dependency/OSS vulnerability scanning
  • Container image scanning
  • Infrastructure compliance checks
• Enable automated test frameworks for functional, integration, and security validation.
• Support integration and secure deployment workflows for the vendor-provided H2F data capture application as it connects to H2FMS.
• Ensure DevSecOps pipelines support secure ingestion, transformation, and hosting of vendor data in Army GovCloud.
• Coordinate environment staging, secrets management, IAM integration, and endpoint configuration.
• Implement and maintain Zero Trust-aligned controls for identity, policy enforcement, and boundary protection.
• Integrate access management and secrets management tools (AWS IAM, Azure AD, HashiCorp Vault, etc.).
• Ensure all deployment workflows adhere to RMF and continuous ATO (cATO) requirements.
• Containerize services and support orchestration (Kubernetes/EKS/AKS or equivalent).
• Implement runtime security measures (Falco, Prisma, Aqua, or similar).
• Develop automated scaling, rolling updates, and resiliency mechanisms.
• Configure observability tools (CloudWatch, Azure Monitor, ELK, PrometheGrafana, etc.) for logs, metrics, and traces.
• Implement proactive alerting and incident response pipelines.
• Support performance tuning, troubleshooting, and defect resolution across the H2FMS tech stack.
• Work closely with Cloud Architecture, Cybersecurity, Data Engineering, UI/UX, and Human Performance SMEs.
• Participate in Agile ceremonies including sprint planning, backlog refinement, and sprint reviews.
• Contribute to technical documentation and architectural decision records (ADRs).
• Provide guidance and mentorship to mid-level engineers on DevSecOps best practices.

Qualifications

Required Qualifications

• Bachelor's degree in computer science, Engineering, Information Systems, Cybersecurity, or a related discipline.
• 8+ years of hands-on DevSecOps experience supporting cloud-based applications in secure environments.
• Demonstrated experience with:
• CI/CD pipelines (GitLab CI, GitHub Actions, Jenkins, Azure DevOps, etc.)
• Infrastructure-as-Code (Terraform, CloudFormation, ARM/Bicep)
• Containerization (Docker) and orchestration (Kubernetes, EKS/AKS)
• Automated security scanning and secure software development practices
• Strong understanding of RMF, cATO, Zero Trust, and DoD cybersecurity controls.
• Experience deploying production workloads in AWS, Azure, or DoD cloud environments (cARMY, GovCloud, IL4/IL5 preferred).
• Ability to obtain and maintain a DoD Secret clearance.
• Location: Remote.
• Travel: Ability to travel to Fort Eustis, VA or LMI HQ in Tysons, VA 1-2 times per quarter for planning, integration, and collaboration.

Desired Qualifications

• Experience supporting tactical or military human performance, training, or readiness systems.
• Certifications such as:
• AWS DevOps Engineer
• Azure DevOps Engineer Expert
• Kubernetes Administrator (CKA)
• Security+ or equivalent cybersecurity certifications
• Experience with:
• Secrets management solutions
• API gateway deployments
• Log and event correlation for compliance
• Automated compliance as code (OpenSCAP, OPA, Cloud Custodian)
• Familiarity with Agile/Scrum environments and DevSecOps at scale.

The target salary range for this position is up to $207,000. The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.

#LI-SH1

Options

Apply for this job onlineApply

Share

Email this job to a friendRefer

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.

Share on your newsfeed

LMI is an Equal Opportunity Employer. LMI is committed to the fair treatment of all and to our policy of providing applicants and employees with equal employment opportunities. LMI recruits, hires, trains, and promotes people without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, disability, age, protected veteran status, citizenship status, genetic information, or any other characteristic protected by applicable federal, state, or local law. If you are a person with a disability needing assistance with the application process, please contact
Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Need help finding the right job?