The DevSecOps Engineer will design, implement, and sustain secure, scalable pipelines and infrastructure to enable rapid, compliant deployment of agentic AI capabilities into NGA CORE and related National Geospatial-Intelligence Agency (NGA) data environments.
Requirements
- 3+ years of hands-on experience with DevSecOps in AI/ML or data-intensive systems.
- Strong proficiency in Python for automation, scripting, and pipeline development.
- Experience with containerization (Docker, Kubernetes), microservices architecture, and event-driven design.
- Familiarity with CI/CD tools and practices (GitLab CI/GitHub Actions/Jenkins).
- Knowledge of security compliance frameworks (RMF, NIST 800-53) and building systems to achieve ATO in classified environments.
- Familiarity with secure front-end frameworks, identity management (Keycloak, OpenID Connect), or zero-trust architecture.
- Experience with NGA CORE and other Intelligence Community (IC) secure data environments.
Responsibilities
- Build and maintain data/model integration pipelines for NGA data lakes and object storage (e.g., AWS S3), ensuring secure, reliable data ingestion into the agentic AI platform.
- Implement robust CI/CD pipelines for containerized microservices (Docker/Kubernetes) supporting frequent, automated deployments across IL5/IL6 cloud environments.
- Automate provisioning, configuration, and release processes to reduce cycle time while maintaining security posture.
- Develop and operate Authority to Operate (ATO)-ready testing environments and compliance pipelines.
- Integrate security scans (static/dynamic analysis, SBOMs, dependency checks) and security controls into the CI/CD workflow to enforce zero-trust principles and achieve repeatable ATO packages
- Design microservice architectures to support scalable, distributed agentic AI services, leveraging RESTful APIs, event-driven architectures (AWS EventBridge), and standardized interfaces.
- Implement system telemetry, centralized logging, alerting, and automated recovery to maintain high availability and operational resilience.
Other
- Bachelor’s degree in computer science, Software Engineering, or related field.
- Master’s degree in Cybersecurity, DevSecOps, or related field.
- Active TS/SCI clearance (or ability to obtain one).
- U.S. Citizenship
- TS/SCI with Polygraph
