Senior DevSecOps Engineer

Role Overview ASRC Federal is seeking a highly skilled DevSecOps Engineer to accelerate mission delivery through secure, automated, and scalable software pipelines and software containerization for a Department of War (DoW) agency customer. The ideal candidate will design, operate, and maintain robust Continuous Integration and Continuous Deployment (CI/CD) environments, spearhead container orchestration on Azure Kubernetes Service (AKS), and ensure all infrastructure and applications adhere strictly to DoW cybersecurity and compliance standards.  This role will work closely with development teams to drive the modernization of software development practices and legacy .NET systems into cloud-native architectures. Key Responsibilities Manage and maintain enterprise GitLab infrastructure, including user management, Role-Based Access Controls (RBAC), repository administration, and system configuration to ensure high availability and security. Design, implement, and manage advanced GitLab CI/CD pipelines. Automate the build, test, and deployment phases across multiple mission-critical projects and varying environments. Architect and maintain standardized GitLab pipeline templates and reusable components. Promote enterprise-wide consistency, reduce code duplication, and accelerate development workflows for all supported development teams. Embed automated security gates within the CI/CD pipeline, including Static Application Security Testing (SAST), Software Composition Analysis (SCA), and proactive container vulnerability scanning. Drive containerization strategies and modernize legacy applications utilizing Docker and Kubernetes. Deploy and manage containerized applications within Azure Kubernetes Service (AKS), guaranteeing scalability, high availability, and optimal resource utilization. Ensure all deployments align with DoD Security Technical Implementation Guides (STIGs) and zero-trust architecture. Assist in generating required artifacts to streamline the Risk Management Framework (RMF) and Authority to Operate (ATO) processes. Implement comprehensive logging, monitoring, and alerting solutions to maintain system health, detect anomalies, and support incident response efforts. Collaborate directly with software development teams to assess, refactor, and containerize legacy .NET applications. Serve as the DevSecOps Subject Matter Expert (SME) to upskill and coach developers with respect to Docker and Kubernetes. Drive organizational adoption of cloud-native workflows through hands-on troubleshooting, technical demonstrations, and the creation of developer-focused documentation. Minimum Qualifications Must possess or be able to obtain DoD IAT 2 certification (Security+ CE, CCNA-Security, GICSP, GSEC, or SSCP) 5+ years of experience in DevOps, System Administration, or Software Engineering, with a minimum of 3 years dedicated to DevSecOps practices. Bachelors Degree in related field. Equivalent combination of experience and education will be considered.  Active Secret Clearance Required Preferred Qualifications Expertise in GitLab (Administration & CI/CD), Docker, and Kubernetes. Practical experience containerizing legacy applications and migrating them to modern Kubernetes environments. Experience deploying and managing infrastructure in Microsoft Azure, specifically Azure Kubernetes Service (AKS). Familiarity with DoD security mandates and STIG compliance or working within a highly regulated environment is a plus.   Why ASRC?  As a wholly owned subsidiary of Arctic Slope Regional Corporation, an Alaska Native Corporation, we are inspired by the Iñupiat culture. We embrace stewardship and the idea of using every resource effectively; teamwork when striving to achieve goals and building a collaborative environment; integrity in adhering to high moral principles and professional standards; respect in welcoming and regarding the differing opinions, experiences, rights and traditions of others; accountability in that we meet our commitments and take responsibility for our results; and continuous improvement, always striving to make things better, raising the bar and staying humble.   Advantages of Working at ASRC Federal: Purpose-Driven Careers: Join a company recognized as a: Certified Great Place to Work Military Times’ Best for Vets Employer Military.com’s Top 25 Veteran Employer   Comprehensive Benefits: Insurance Coverage: Comprehensive plans for medical, dental, vision, life insurance, and short-term/long-term disability Paid Leave: Inclusive policies for bereavement, military obligations, and parental needs, along with 11 paid holidays annually Retirement Savings: A 401(k) plan with a generous company match and immediate vesting to help secure your financial future Incentives: Employee referral bonuses to reward you for helping grow the ASRC Federal Family   Learning and Development: After 90 days of employment, regular full-time employees are eligible for our professional development program. This includes annual funding for: Pursuing Associate’s, Bachelor’s, or Graduate Degrees Obtaining industry-standard professional certifications Participating in professional certificate programs Covering registration fees for professional conferences   Centers of Excellence: We established the Centers of Excellence to build, leverage and grow our technological capabilities, best practices and offer professional development for our technical teams.  They contain many Communities of Practice which are forums that offer a platform to share ideas, best practices, innovations, and to collaborate with technical peers.   Embark on a career with ASRC Federal, where your growth, purpose, and well-being are at the forefront of what we do! Data Management: Applications will be reviewed in intervals. The first 15 candidates will be considered, followed by subsequent groups of 15.