Full-Time DevSecOps Security Architect

The DevSecOps Security Architect will support the Department of Veterans Affairs by providing technical and programmatic support services to include development, maintenance, enterprise architecture, and administrative engineering support.  

Duties

As a DevSecOps Security Architect supporting Maveris programs, you will be trusted to lead the delivery of a Federal Agency’s Enterprise Security Architecture and Strategy. In this role, a typical day will include: 

• Provide thought leadership for new techniques and design patterns related to Enterprise Security Architecture within the domain of DevSecOps .
• Ensure that the Enterprise Security Architecture, framework, and strategy across the enterprise remains consistent with and supports the NIST Cybersecurity Framework and other federal mandates .
• Architect and implement security solutions across the software development lifecycle (SDLC), from design through to deployment, ensuring that security is integrated into every phase. 
• Design practices for automated security tools (SAST, DAST, SCA, etc.) into CI/CD pipelines to detect and address vulnerabilities early in the development process. 
• Design best practices for securing cloud environments (AWS, Azure) and containerized applications (Docker, Kubernetes), including identity and access management, encryption, and network security. 
• Work closely with development, operations, and security teams to ensure that security requirements are understood and implemented consistently. 
• Provide guidance and training to development and DevOps teams on secure coding practices, threat mitigation strategies, and the use of security tools. 

Requirements

• Bachelor’s Degree in Cybersecurity, Math, Engineering, Computer Science, Information Technology, Information System Architecture, Telecommunication System, Design or related discipline 
• 10 years of relevant experience 
• Experience developing DevSecOps practices comply with industry standards and regulations such as ISO 27001 and NIST 
• Hands-on experience in securing cloud infrastructures (AWS, Azure) and container orchestration (Kubernetes, Docker)
• Experience with security tools in the CI/CD pipeline such as Jenkins, GitLab CI, CircleCI, or Travis CI
• Strong understanding of security protocols, cryptography, authentication, authorization, and network security
• Proficiency in automation scripting (Python, Bash, Go, etc.) and experience with Infrastructure as Code (Terraform, Ansible, Chef)
• Familiarity with DevSecOps tools such as SonarQube, Checkmarx, Aqua Security, Sysdig, and Twistlock
• Knowledge of modern DevOps practices (CI/CD, microservices, serverless architectures)
• Knowledge of AI/ML applications in cybersecurity
• Hands-on experience with Zero Trust security models