DevSecOps Engineer

Kforce's client, a leading engineering technology company in Orem, UT, is seeking a DevSecOps Engineer. This role involves embedding security into rapid development cycles for advanced electro-mechanical systems in defense and aerospace. The engineer will bridge development, security, and operations across cloud, software, hardware, and embedded systems, championing 'security as code' to ensure mission-critical systems are secure by default from design through deployment. Key responsibilities include designing secure CI/CD pipelines, integrating automated security testing, and ensuring compliance with DoD standards like RMF, CMMC, and NIST 800-53/171.

Must Have

• Design and manage secure CI/CD pipelines
• Integrate automated security testing
• Implement Infrastructure as Code (IaC) for secure provisioning
• Secure containerized applications and orchestration platforms (Docker, Kubernetes)
• Ensure compliance with defense standards: RMF, CMMC, NIST 800-53/171
• Implement security monitoring and incident response processes
• Collaborate closely with engineering and software teams
• Bachelor's degree in a technical field or equivalent work experience
• 3-5+ years in DevSecOps, DevOps, and Security Engineering
• Experience with Cloud infrastructure (AWS or other providers), EC2, Elastic IPs, backup/data retention automation
• Proficiency with CI/CD tools (GitLab), containerization (Docker), orchestration (Kubernetes)
• Linux OS experience
• Familiarity with IaC tools and security best practices
• Knowledge of NIST, POA&M, STIGs, DoD frameworks (PlatformOne), CMMC/NIST 800-171

Good to Have

• Certifications: CISSP
• Imaging tools (Ghost, Fog)
• Networking background (ZeroTier, Tailscale)
• Familiarity with embedded systems
• Scripting proficiency (Python, Bash)

Perks & Benefits

• Medical/dental/vision insurance
• HSA
• FSA
• 401(k)
• Life, disability & ADD insurance
• Paid time off (for salaried personnel)
• Paid sick leave (for hourly employees on a Service Contract Act project)

Kforce's client, a leading engineering technology company in Orem, UT, is looking a DevSecOps Engineer. This company designs and manufactures advanced electro-mechanical systems for defense and aerospace applications. Their innovative products-from secure communication devices to autonomous platforms-help keep military personnel safe, connected, and informed. The DevSecOps Engineer will embed security into rapid development cycles and ensure the resilience of mission-critical systems from design through deployment. This is a full onsite position. Summary: As a DevSecOps Engineer, you will be a key member of the engineering team, bridging development, security, and operations across cloud, software, hardware, and embedded systems. You will champion the concept of -security as code-, automating security controls and processes so products are secure by default-not as an afterthought. This position will lead efforts to achieve Authority to Operate (ATO) through DoD standards and play a critical role in securing systems from inception to delivery. Key Responsibilities:

• Design and manage secure CI/CD pipelines
• Integrate automated security testing and implement Infrastructure as Code (IaC) for secure provisioning
• Secure containerized applications and orchestration platforms (Docker, Kubernetes)
• Ensure compliance with defense standards: RMF, CMMC, NIST 800-53/171
• Implement security monitoring and incident response processes
• Collaborate closely with engineering and software teams

Requirements

------------

• Bachelor's degree in a technical field or equivalent work experience
• Certifications: Security+, CISSP (preferred)
• 3-5+ years in DevSecOps, DevOps, and Security Engineering
• Cloud infrastructure (AWS or other providers), including EC2, Elastic IPs, backup/data retention automation
• CI/CD tools (GitLab), containerization (Docker), orchestration (Kubernetes)
• Linux OS experience
• Familiarity with IaC tools and security best practices
• Compliance knowledge: NIST, POA&M, STIGs; DoD frameworks (PlatformOne), CMMC/NIST 800-171
• Visa sponsorship is not available for this position
• Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information
• Ideal candidates may also come from other government agencies or federally regulated environments

Desired Skills:

• Imaging tools (Ghost, Fog)
• Networking background (ZeroTier, Tailscale)
• Familiarity with embedded systems
• Scripting proficiency (Python, Bash) is a plus

The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.

This job is not eligible for bonuses, incentives or commissions.

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

By clicking “Apply Today” you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.