Design, build, and maintain CI/CD pipelines to support automated build, test, and deployment processes
Integrate security practices into all stages of the software development lifecycle, including build, test, and deployment processes
Implement automated security testing and scanning within CI/CD pipelines (e.g., static and dynamic code analysis, vulnerability scanning)
Develop and manage containerized applications using Docker and orchestration platforms such as Kubernetes or OpenShift
Implement Infrastructure as Code (IaC) solutions to automate environment provisioning and configuration
Support deployment and release activities across development, test, and production environments
Collaborate with development, systems engineering, and technical leadership to enable efficient and reliable delivery
Identify and remediate security vulnerabilities in collaboration with development and security teams
Ensure CI/CD pipelines and deployment processes align with security and compliance requirements
Monitor pipeline performance and system health, identifying and resolving issues to ensure continuous delivery
Support version control and branching strategies using tools such as GitHub or similar platforms
Maintain and optimize build and deployment tools (e.g., Jenkins, GitHub Actions or similar)
Troubleshoot and resolve issues related to deployments, pipelines, and containerized environments
Support configuration management and ensure consistency across environments
Maintain documentation for pipelines, deployment processes, and automation workflows
Requirements
U.S. Citizenship required due to federal contract requirements
Ability to obtain and maintain a Public Trust clearance
Candidate must have lived in the U.S. for three (3) full years out of the last five (5) years
3+ years of experience in DevOps, DevSecOps, or related technical roles
2+ years of experience building and maintaining CI/CD pipelines
Bachelor's degree in Computer Science, Engineering, or a related field (preferred)
AWS Certified DevOps Engineer or similar cloud-based certification
2+ years of experience working with container technologies such as Docker
2+ years of experience with container orchestration platforms such as Kubernetes or OpenShift
2+ years of experience with AWS cloud services and environments
2+ years of experience with Infrastructure as Code (e.g., Terraform or similar tools)
2+ years of experience supporting automated deployments and release processes
2+ years of experience integrating security practices into CI/CD pipelines and development workflows
Familiarity with automated security testing tools (e.g., SAST, DAST, vulnerability scanning or similar)
Understanding of secure software development practices and compliance requirements in cloud environments
Familiarity with version control systems (e.g., GitHub or similar)
Strong problem-solving skills and ability to troubleshoot deployment and automation issues
Professional Skills
Strong communication skills with the ability to collaborate across development, infrastructure, and security teams
Ability to operate in fast-paced, high-pressure delivery environments with a focus on reliability and responsiveness
Experience supporting client-facing programs with emphasis on delivery timelines and operational stability
Ability to manage multiple priorities and support continuous delivery across teams
Detail-oriented with a focus on automation, efficiency, and system reliability
#Indeed
Working at ICF
ICF is a global advisory and technology services provider, but we're not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future.
We can only solve the world's toughest challenges by bu
Benefits
Health insuranceVision insurance
Additional Information
DevSecOps Engineer (Business & Infrastructure Operations)
We are seeking a DevSecOps Engineer to support federal government programs by integrating security into all stages of the software development lifecycle while building and maintaining CI/CD pipelines and containerized environments within a cloud-based infrastructure. This role focuses on enabling secure, automated, and reliable system delivery by embedding security controls into development and deployment processes in collaboration with development, operations, and security teams.
The ideal candidate brings strong experience with AWS, CI/CD pipelines, and container technologies, along with the ability to automate deployments and integrate security practices to support scalable and compliant systems.
Location
This is a hybrid role which may require occasional travel to the DC Metro area for onsite client meetings. Preference to candidates located within the Washington, DC Metro area.
If you accept this position, you should note that ICF does monitor employee work locations and blocks access from foreign locations/foreign IP addresses and also prohibits personal VPN connections.
Icf · Reston, VA