Principal DevSecOps / Platform Engineer

Type of Requisition:
Regular

Clearance Level Must Currently Possess:
Secret

Clearance Level Must Be Able to Obtain:
Secret

Public Trust/Other Required:
None

Job Family:
Software Engineering

Job Qualifications:

Skills:
Containerization Software, GitLab CI/CD, Kubernetes Orchestration, Software Delivery
Certifications:
None
Experience:
8 + years of related experience
ship Required:
Yes

Job Description:

Principal DevSecOps / Platform Engineer

We are seeking a developer-focused DevSecOps engineer to join a high-performing team building and operating software factories, security automation platforms, and AI-enabled development environments for Department of Defense and Federal customers. This role emphasizes hands-on software development within a DevSecOps context - you will write production code, build tooling, and develop applications, not just configure pipelines.

The team supports multiple concurrent internal R&D efforts and customer delivery engagements across defense and federal programs. You will contribute to a range of workstreams including agentic AI application development, software factory platform enhancements, security and compliance automation, and secure software delivery for classified environments.

MEANINGFUL WORK AND PERSONAL IMPACT

• Work across a broad portfolio rather than a single narrow program - variety and exposure to cutting-edge problems in government software delivery
• Significant investment in AI, automation, and modern platform engineering - not legacy maintenance
• Small, senior team where individual contributions have outsized impact
• Opportunity to shape how the our customers' missions are built and delivered using secure software at scale
• Exposure to Growth activities (proposals, customer engagements) for engineers who want to develop business acumen alongside technical depth

KEY RESPONSIBILITIES

DevSecOps Engineering - Primary Focus

Utilize AI-assisted Development tools and frameworks to:

• Design, develop, and maintain CI/CD pipelines for build, test, security scanning, and release across unclassified and classified environments
• Integrate and operate security scanning toolchains (SAST, SCA, container scanning, SBOM generation) as automated pipeline stages
• Use AI-assisted development workflows daily - code generation, automated testing, intelligent code review, and documentation - and champion their adoption across teams
• Contribute to the development of agentic AI capabilities including tool orchestration, prompt engineering, and workflow automation
• Build tooling and automation to support continuous Authority to Operate (cATO) processes, including automated evidence collection, compliance reporting, and policy enforcement
• Develop and maintain hardening pipeline templates that product teams consume for secure-by-default software delivery
• Support platform's security pipeline layer - build, test, and release process for software packages that include both application code and runtime platform components
• Implement and enforce software supply chain security controls (signing, provenance, artifact integrity)
• Troubleshoot build and deployment failures, support development teams consuming shared pipeline services

Platform Engineering

• Deploy and operate Kubernetes clusters (Big Bang / Iron Bank baseline) in classified (CUI/IL5) environments
• Deploy, configure, and support AI-powered development tools (GitLab Duo, LLM-based code assistants, agentic AI frameworks) for platform consumers and internal team use
• Support AI/ML platform infrastructure (model serving, GPU workloads, data pipelines) as part of the broader platform offering
• Stand up and maintain shared platform services: Harbor (container registry), Nexus (artifact repository), Vault (secrets management), ArgoCD (GitOps deployment)
• Implement Infrastructure-as-Code for environment provisioning, cluster lifecycle, and configuration management (Terraform, Ansible)
• Support multi-cluster management and hub/spoke deployment models - build in shared services, deploy into downstream accounts
• Configure and troubleshoot network connectivity, Zscaler integration, and Okta/SAML identity federation for platform consumers
• Contribute to platform evolution including self-service namespaces, developer onboarding, and golden-path templates
• Maintain and improve multiple production software factory environments serving diverse federal customers
• Contribute to runbooks, operational documentation, and incident response procedures

WHAT YOU'LL NEED TO SUCCEED - REQUIRED SKILLS
Bring your engineering expertise along with a drive for innovation to GDIT. The DevOps Engineer Principal must have:
Education: Bachelor's degree and 8+ years experience. In lieu of degree 12+ years of hands-on experience
Experience: 5+ years of related experience in Software Engineering, DevOps / DevSecOps technologies; 3+ years of hands on experience with Kubernetes

• Experience using AI-powered development tools (code assistants, LLM-based tooling, AI-augmented workflows) in daily engineering work - and enthusiasm for pushing their adoption forward
• Hands-on experience with CI/CD pipeline development - GitLab CI strongly preferred; Jenkins, GitHub Actions, or similar accepted
• Experience integrating security scanning tools into automated pipelines (SAST, DAST, SCA, container image scanning)
• Proficiency with Infrastructure as Code (Terraform and/or Ansible)
• Experience with containerization (Docker, Helm, OCI artifacts) and container registry management
• Strong Linux systems skills - administration, shell scripting, troubleshooting
• Solid understanding of Git-based workflows, branching strategies, and GitOps deployment patterns
• Experience working in or deploying to classified or air-gapped environments
• Ability to work across multiple concurrent projects with shifting priorities
• Strong written and verbal communication skills
• Security clearance level: Secret Clearance required to start
• Location: Remote with travel up to 10%
• Citizenship: ship

PREFERRED QUALIFICATIONS

• Experience with Platform One / Big Bang, Iron Bank baselines, or DoD-hardened Kubernetes distributions
• Familiarity with DoD security and authorization frameworks (NIST 800-53, RMF, cATO, software factory authorization patterns)
• Knowledge of software supply chain security practices - artifact signing, attestation, and SBOM generation (e.g., Sigstore/Cosign, Syft, in-toto)
• Experience deploying or operating AI/ML infrastructure or AI development platforms in enterprise or air-gapped environments (model serving, GPU scheduling on K8s, enterprise code-assistant rollout)
• Experience supporting growth activities - contributing to proposals, RFI responses, or technical briefings, and engaging customers as a technical SME

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
Growth: AI-powered career tool that identifies career steps and learning opportunities
Support: An internal mobility team focused on helping you achieve your career goals
Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore a career in software development at GDIT and you'll find endless opportunities to grow alongside colleagues who share your dedication to advancing innovation.

The likely salary range for this position is $113,900 - $154,100. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:
40

Travel Required:
Less than 10%

Telecommuting Options:
Remote

Work Location:
Any Location / Remote

Additional Work Locations:

Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee's date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans