Full-Time Principal DevSecOps Engineer

About the RoleSecond Front Systems (2F) seeks a Principal DevSecOps Engineer to join their mission-driven team. 2F is a dynamic, fast-growing company that delivers transformative solutions for national security. This role plays a pivotal part in shaping the company's future in the defense sector.

What You'll Do

• Architect and implement scalable, secure cloud infrastructure using Kubernetes and Pulumi (Go-based), ensuring DoD and IC compliance.
• Support security and operations of the 2F Suite across air-gapped and classified environments, collaborating with government partners and security teams.
• Build and manage CI/CD pipelines integrating DevSecOps best practices.
• Integrate and maintain SIEM and security tooling, ensuring observability and compliance.
• Design, develop, and debug microservices in Go, focusing on performance, security, and modularity.
• Work cross-functionally to assess infrastructure needs, prioritize development, and deliver on product roadmap milestones.
• Document infrastructure and internal procedures for secure, repeatable, and auditable deployments.
• Collaborate with DoD/IC stakeholders to provision secure cloud resources and meet deployment criteria in classified settings.
• Contribute to R&D and experimentation efforts for platform advancements in secure environments.
• Mentoring and shaping internal DevSecOps strategy and infrastructure standards.

Skills You'll Bring

• 8+ years of relevant experience in DevSecOps, systems engineering, or infrastructure software development.
• Architect-level expertise in cloud-native platforms (AWS, Azure, or GCP).
• Deep experience with Kubernetes, Docker, and cloud-native application orchestration.
• Proficiency in Golang (or similar languages).
• Familiarity with compliance frameworks (FedRAMP, DoD SRG, NIST 800-53, RMF/ATO).
• Proven experience deploying in air-gapped or classified environments.
• Experience building and maintaining secure CI/CD pipelines.
• Hands-on experience with SIEM, monitoring, and alerting systems.
• Understanding of REST APIs, authentication flows, event-driven architecture, and microservice patterns.
• Strong written and verbal communication skills, and documentation habits.
• Ability to work independently and in distributed teams.

What is the last date for applying to the job?

Which countries are accepted for this remote job?