Apply on Employer Site

Noblis · 14 hours ago

DevSecOps Engineer III

Reston, VA

Full-time

Onsite

Mid, Senior Level

$121K/yr - $189K/yr

7+ years exp

Noblis is seeking a highly skilled and motivated Senior DevSecOps Engineer with an active Top Secret/SCI with Polygraph clearance to join their security team. This role involves integrating security into the software development life cycle, building secure CI/CD pipelines, and mentoring junior engineers.

National DefenseNon ProfitInformation TechnologyNational Security

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Design, build, and maintain automated CI/CD pipelines (GitLab CI/CD, GitHub Actions) that incorporate security testing tools at every stage

Develop and manage infrastructure using Terraform or CloudFormation, implementing security guardrails and scanning to ensure compliance and prevent misconfigurations

Implement security best practices for Docker, Kubernetes, and EKS, including image hardening, admission controls, policy-as-code and runtime security

Partner with teams to design and enforce AWS/Azure security guardrails, including IAM least-privilege, network controls, and encryption standards

Operationalize vulnerability management by identifying, prioritizing, and remediating security threats across applications and infrastructure

Translate security compliance requirements into automated security controls and audit-ready evidence

Act as a security champion, mentoring junior engineers and developers on secure coding practices and DevSecOps principles

Qualification

DevSecOpsAWS securityKubernetes securityCI/CD pipelinesTerraformPythonDockerSecurity scanning toolsCISSPContinuous improvementAnalytical skills

Required

Clearance: Active Top Secret SCI (TS/SCI) with Polygraph

Citizenship: U.S. Citizenship is required

Education: Bachelor's degree in Computer Science, Information Security, or related technical field

Experience: 7+ years of experience in DevOps, SRE, or Platform Engineering, with at least 3 years focused on DevSecOps and cloud-native security

Cloud Platforms: Deep hands-on experience securing AWS or Azure environments (IAM, KMS, Networking, logging)

CI/CD & Automation: Proficiency in building CI/CD pipelines (GitLab) and automating tasks with Python, Bash

Containers/Orchestration: Strong expertise in Docker and Kubernetes/EKS security

Security Tools: Hands-on experience with security scanning tools

Preferred

Certified Information Systems Security Professional (CISSP), AWS Certified DevOps Engineer - Professional, Certified Kubernetes Security Specialist (CKS), or CCSP

Experience with OPA/Gatekeeper or Kyverno

Knowledge of SBOM generation, artifact signing (cosign), and provenance concepts

Familiarity with NIST SP 800-171 or CMMC expectations

Strong analytical skills to diagnose complex security issues spanning multiple technologies

Ability to distill technical complexities into actionable guidance for development teams

Passion for automating everything and a mindset of continuous improvement

Benefits

Health

Life

Disability

Financial

Retirement benefits

Paid leave

Professional development

Tuition assistance

Work-life programs

Company

Noblis

Glassdoor4.6

Noblis is a nonprofit science, tech strategy organization that works in the public interest to help clients solve most complex problems.

Founded in 1996

Reston, Virginia, USA

1001-5000 employees

http://www.noblis.org

Funding

Current Stage

Late Stage

Leadership Team

Mile Corrigan

President and CEO

William Streilein

Chief Technology Officer

Recent News

Washington Technology

Navy starts the bidding for $500M C4ISR engineering contract

2025-10-21

Noblis, Inc.

NOBLIS MSD AND TDI TECHNOLOGIES FORM SBA-APPROVED JOINT VENTURE, SECURE $20 MILLION NAVY CONTRACT

2025-10-21

Washington Technology

A trio of CEO transitions and more leadership moves to note as fiscal 2026 arrives

2025-10-11

Company data provided by crunchbase