Apply on Employer Site

MetroStar · 1 day ago

Sr. DevSecOps Engineer I (6160)

Reston, VA

Full-time

Onsite

Mid, Senior Level

$156K/yr - $184K/yr

4+ years exp

MetroStar is dedicated to building exceptional teams and providing outstanding technology services. As a Sr. DevSecOps Engineer I, you will design, implement, and maintain cybersecurity infrastructure while collaborating with cross-functional teams to identify vulnerabilities and ensure compliance with security protocols.

Artificial Intelligence (AI)Cloud Data ServicesCyber SecurityInformation TechnologyMachine LearningManagement ConsultingMobileSoftware

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure

Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications, and analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks

Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents, and develop and implement incident response plans to effectively address security breaches, incidents, and breaches

Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures, and work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity

Maintain thorough and accurate documentation of security processes, procedures, and configurations, and prepare detailed reports on security findings, incidents, and actions taken

Qualification

CISSP certificationCybersecurity engineeringCloud-native securitySecurity controls implementationLog collectionAnalysisApplication security toolsCommunication skillsCross-functional collaboration

Required

Active TS/SCI with CI Poly

CISSP, or equivalent certification that satisfies DoD 8140

4+ years of experience as a cybersecurity engineer, with strong hands‑on automation and platform engineering experience

3+ years of hands-on experience implementing and monitoring security controls using government frameworks and standards (e.g., NIST SP 800‑53, RMF, ICD 503, FISMA, FedRAMP) and applying STIGs (Linux preferred)

Hands‑on experience with cloud‑native security, including IaC, containers, Kubernetes/OpenShift, and CI/CD pipelines (GitHub, Bitbucket), and securing these solutions at IL5 to IL6+ across NIPR, SIPR, and/or JWICS

Expert experience in log collection and analysis (e.g., Splunk), using advanced queries to identify security anomalies, and leveraging those insights for incident response, forensic analysis, and daily, weekly, and monthly security checks that support continuous monitoring under NIST RMF

Experience with application and cloud security tools (e.g., Fortify, Acunetix, Prisma Cloud)

Strong communication skills, with the ability to convey complex technical concepts to both technical and non‑technical stakeholders

Benefits

Health, dental, and vision insurance

401(k) retirement plan with company match

Paid time off (PTO) and holidays

Parental Leave and dependent care

Flexible work arrangements

Professional development opportunities

Employee assistance and wellness programs

Company

MetroStar

Glassdoor3.7

MetroStar is a leading provider of secure digital transformation and Artificial Intelligence (AI)-enabled solutions, specializing in delivering cutting-edge IT services to government agencies and defense organizations.

Founded in 1999

Reston, Virginia, USA

501-1000 employees