DevSecOps Engineer SME

Job Description

EverforthECS is seeking a DevSecOps Engineer SME to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Please Note: This position is contingent upon contract award.

The War Data Platform (WDP) is a key initiative within the U.S. Department of War's (DoW) AI-First strategy introduced in early2026. The WDP focuses on operational warfighting data and aims to accelerate the deployment of artificial intelligence (AI) on the battlefield. The WDP extends to Unclassified, Secret, and Top Secret environments, and supports collaboration between Combatant Commands, Joint Staff directorates, Senior Executive Service leaders, and operational analysts.

This role will architect, operate, and optimize advanced DevSecOps pipelines that deliver WDP Core Integration across NIPRNet, SIPRNet, and JWICS, ensuring mission alignment and operational resilience.
Architects, operates, and optimizes advanced DevSecOps pipelines supporting WDP Core Integration enterprise delivery across NIPRNet, SIPRNet, and JWICS for Department of War missions, Combatant Command elements, Joint Staff analysts, and Senior Executive Service leadership.

Designs core pipeline architectures, cross-domain artifact flow patterns, and security tool integrations using GitLab, Jenkins, SonarQube, Nexus, Harbor, Kubernetes, Terraform, and container orchestration platforms.
Leads continuous development of pipeline architecture, authors detailed process documentation, and coordinates extensively with software engineering, cybersecurity, and platform infrastructure teams to maintain mission alignment and operational resilience.
Acts as the primary escalation point for complex pipeline failures, zero-day vulnerability triage, and classification boundary issues affecting multi-network delivery.
Maintains expert-level mastery of continuous integration tooling, static and dynamic security scanning platforms, software composition analysis systems, secret management frameworks, and compliance automation capabilities used across the WDP Core Integration ecosystem.
Authors technical standards including pipeline YAML and domain-specific DSL, policy-as-code modules, artifact signing procedures, and automated authorization workflows governing software factory operations.
Pilots advanced security-as-code techniques such as policy-driven guardrails, automated risk scoring, and cross-domain validation prototypes within controlled lab environments prior to production adoption.
Integrates scanning, software bill of materials generation, compliance validation, and automated security gates using Anchore, Trivy, OpenSCAP, and Sysdig to maintain vulnerability reduction and configuration discipline.
Monitors pipeline performance indicators-including success rates, deployment frequency, restoration times, defect recurrence, and integration stability-to identify reliability risks and accelerate delivery velocity.
Produces technical assessments, architecture updates, optimization recommendations, and leadership reports that strengthen automation coverage, operational readiness, and mission execution across the WDP Core Integration enterprise.
Performs other duties as assigned.

Required Skills

Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
IATIII-level security certifications (CompTIACASP+CE, ISCCISSP or Associate, GIACGCED, GIACGCIH, or CiscoCCNPSecurity).
Minimum 12years of experience designing, implementing, and maintaining enterprise-scale DevSecOps pipelines across multi-domain and classified environments.
Proven expertise in integrating CI/CD tools such as GitLab, Jenkins, SonarQube, Nexus, Harbor, Kubernetes, and Terraform with security-as-code frameworks.
Demonstrated ability to lead cross-functional teams, author process documentation, and provide escalation for complex pipeline failures and vulnerability triage.
Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).

Desired Skills

Active Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI) eligibility.
Experience pioneering policy-as-code and automated risk-scoring mechanisms in production DevSecOps environments.
Knowledge of DoW security frameworks (C.5.2.x, C.5.4.x) and ability to translate them into pipeline governance and compliance controls.
Track record of driving automation coverage to exceed 90% of build-time security checks without impacting delivery velocity.
Leadership in cross-domain certification coordination (ATO/POA&M) for multi-enclave pipeline deployments.

ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.

Everforth ECS is the federal segment of Everforth , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.

Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.

We value:

• Attracting and developing top talent and high-performing teams
• Fostering a culture that is engaging, accountable, and mission-driven