Lead DevSecOps Cloud Engineer
Bravo17 LLC
Washington, DCFull Time
Job Description
About Bravo 17
Bravo17 LLC was founded to help federal agencies deliver order of magnitude improvement in digital products and services with a focus on Customer and User Experience. Core services include digital strategy, digital product management, system design development & optimization for applications and IT. See us at https://www.bravo17digital.com/.
Position Summary
We are seeking a Lead DevSecOps Cloud Engineer to architect, secure, and scale cloud infrastructure. With a minimum of 8 years in the field, you aren't just managing servers; you are building the automated "paved road" that allows developers to ship code securely and rapidly.
What you'll do
In this role, you will bridge the gap between development, security, and operations. You will be responsible for moving security "left" in our CI/CD pipelines, ensuring that cloud-native applications are resilient by design. As a Lead, you will influence the long-term technical roadmap.
Responsibilities:
Cloud Architecture & IaC: Architect, implement, and maintain highly available, fault-tolerant, and multi-cloud infrastructure (AWS, Azure, GCP, OCI) using Infrastructure as Code (IaC) tools like Terraform, CloudFormation, or Ansible.
DevSecOps & Security Leadership: Lead the DevSecOps strategy, moving security "left" by integrating automated security scanning (SAST, DAST), container security, and compliance checks directly into CI/CD pipelines.
CI/CD Orchestration: Lead the evolution of deployment pipelines (e.g., Jenkins, GitLab CI, GitHub Actions) to enable secure, rapid, and zero-downtime application deployments.
Cloud Governance: Establish and manage comprehensive cloud governance, including Identity and Access Management (IAM), encryption (at rest/in transit), and cloud-native security toolsets.
Site Reliability Engineering (SRE): Implement robust observability (monitoring, logging, alerting) with tools like Prometheus, Grafana, and CloudWatch. Drive continuous improvement by leading incident response and post-mortem processes.
Capacity Planning & Reliability: Collaborate with development teams to embed reliability into application design, and lead capacity planning to forecast resource needs and ensure effective system scaling.
Technical Leadership & Documentation: Provide technical leadership and mentorship to DevOps engineers, conducting code reviews and promoting a culture of continuous learning. Author detailed technical documentation for all development and operational processes.
Qualifications:
Experience & Education
Minimum 8+ years of experience in DevOps, Site Reliability Engineering (SRE), or Cloud Engineering, with at least 3 years focused specifically on security.
BS or equivalent in Computer Science, Engineering, Mathematics, Information Systems, or a related technical degree.
Certifications: CompTIA Security+ or equivalent (IAT-2).
Technical Expertise
Deep mastery of AWS; experience managing multi-cloud or hybrid-cloud environments is required.
Expert-level knowledge of Kubernetes (K8s) orchestration, including securing container images and runtime environments.
Advanced scripting skills in Python, Go, or Bash.
Deep understanding of CI/CD tools (e.g., Jenkins, GitLab CI, GitHub Actions, Azure DevOps, Argo CD).
Security & Compliance
Solid understanding of security frameworks and compliance standards (e.g., SOC2, ISO 27001, NIST, or CIS benchmarks).
Professional & Clearance Requirements
Proven ability to explain complex security risks to non-technical stakeholders and advocate for best practices.
US citizenship required.
Top Secret clearance/Tier 5 investigation required.
Preferred Qualifications:
Experience with AWS GovCloud.
Experience with Zero Trust Architecture principles.
Cloud certifications in AWS (Azure, Google, and/or Oracle clouds nice to have).
Solid understanding of networking, Linux/Unix systems, and version control systems (e.g., Git).
Experience with configuration management and orchestration tools (e.g., Terraform, Ansible, Puppet).
Hands-on experience with containerization and orchestration (e.g., Docker, Kubernetes).
Security Clearance
Top Secret Required
Bravo17 LLC was founded to help federal agencies deliver order of magnitude improvement in digital products and services with a focus on Customer and User Experience. Core services include digital strategy, digital product management, system design development & optimization for applications and IT. See us at https://www.bravo17digital.com/.
Position Summary
We are seeking a Lead DevSecOps Cloud Engineer to architect, secure, and scale cloud infrastructure. With a minimum of 8 years in the field, you aren't just managing servers; you are building the automated "paved road" that allows developers to ship code securely and rapidly.
What you'll do
In this role, you will bridge the gap between development, security, and operations. You will be responsible for moving security "left" in our CI/CD pipelines, ensuring that cloud-native applications are resilient by design. As a Lead, you will influence the long-term technical roadmap.
Responsibilities:
Cloud Architecture & IaC: Architect, implement, and maintain highly available, fault-tolerant, and multi-cloud infrastructure (AWS, Azure, GCP, OCI) using Infrastructure as Code (IaC) tools like Terraform, CloudFormation, or Ansible.
DevSecOps & Security Leadership: Lead the DevSecOps strategy, moving security "left" by integrating automated security scanning (SAST, DAST), container security, and compliance checks directly into CI/CD pipelines.
CI/CD Orchestration: Lead the evolution of deployment pipelines (e.g., Jenkins, GitLab CI, GitHub Actions) to enable secure, rapid, and zero-downtime application deployments.
Cloud Governance: Establish and manage comprehensive cloud governance, including Identity and Access Management (IAM), encryption (at rest/in transit), and cloud-native security toolsets.
Site Reliability Engineering (SRE): Implement robust observability (monitoring, logging, alerting) with tools like Prometheus, Grafana, and CloudWatch. Drive continuous improvement by leading incident response and post-mortem processes.
Capacity Planning & Reliability: Collaborate with development teams to embed reliability into application design, and lead capacity planning to forecast resource needs and ensure effective system scaling.
Technical Leadership & Documentation: Provide technical leadership and mentorship to DevOps engineers, conducting code reviews and promoting a culture of continuous learning. Author detailed technical documentation for all development and operational processes.
Qualifications:
Experience & Education
Minimum 8+ years of experience in DevOps, Site Reliability Engineering (SRE), or Cloud Engineering, with at least 3 years focused specifically on security.
BS or equivalent in Computer Science, Engineering, Mathematics, Information Systems, or a related technical degree.
Certifications: CompTIA Security+ or equivalent (IAT-2).
Technical Expertise
Deep mastery of AWS; experience managing multi-cloud or hybrid-cloud environments is required.
Expert-level knowledge of Kubernetes (K8s) orchestration, including securing container images and runtime environments.
Advanced scripting skills in Python, Go, or Bash.
Deep understanding of CI/CD tools (e.g., Jenkins, GitLab CI, GitHub Actions, Azure DevOps, Argo CD).
Security & Compliance
Solid understanding of security frameworks and compliance standards (e.g., SOC2, ISO 27001, NIST, or CIS benchmarks).
Professional & Clearance Requirements
Proven ability to explain complex security risks to non-technical stakeholders and advocate for best practices.
US citizenship required.
Top Secret clearance/Tier 5 investigation required.
Preferred Qualifications:
Experience with AWS GovCloud.
Experience with Zero Trust Architecture principles.
Cloud certifications in AWS (Azure, Google, and/or Oracle clouds nice to have).
Solid understanding of networking, Linux/Unix systems, and version control systems (e.g., Git).
Experience with configuration management and orchestration tools (e.g., Terraform, Ansible, Puppet).
Hands-on experience with containerization and orchestration (e.g., Docker, Kubernetes).
Security Clearance
Top Secret Required