DevSecOps Engineer
Not Disclosed•Full-TimeOn-site
location_onUniversity Way, Reno, Washoe County, Nevada, 89505, United States
About the Team
Maximus Technology and Consulting Services (TCS) is dedicated to delivering high-impact solutions for government and commercial clients. This role sits within a specialized team focused on securing critical infrastructure and ensuring the reliability of cloud-native environments. The team operates at the intersection of development, security, and operations, driving a culture where automation and proactive risk management are central to mission success.
About the Role
As a DevSecOps Engineer, you will serve as a guardian of our security posture while enabling rapid, reliable deployment cycles. This position exists to bridge the gap between development agility and rigorous security compliance, ensuring that our systems remain resilient against evolving threats. You will be responsible for the full lifecycle of security operations, from vulnerability scanning and penetration testing to the implementation of automated security frameworks.
Your day-to-day involves designing and executing solutions for network security, managing access controls, and maintaining proxy servers and firewalls. You will leverage scripting languages and open-source tools to replace manual tasks with robust automation, enhancing the efficiency of our deployment processes. By analyzing system logs and utilizing monitoring tools, you will diagnose root causes of security incidents and apply necessary patches to DevOps tooling. Additionally, you will contribute to the continuous improvement of security procedures and runbooks to prevent recurring issues.
Hiring Process
Candidates selected for this role will undergo a rigorous vetting process that includes technical assessments and security clearance verification. The interview process typically involves a review of your technical expertise in cloud platforms and security tools, followed by discussions on your approach to automation and incident response. Successful candidates will be invited to complete a final interview with the hiring team to assess cultural fit and alignment with our mission.
Equal Opportunity & Culture
Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information, or other legally protected characteristics. We are committed to fostering a diverse and inclusive workplace where all employees can thrive.
Accommodations
Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process—including accessing job postings, completing assessments, or participating in interviews—please contact People Operations at applicantaccom@maximus.com.
Work location
Work model: On-site
University Way, Reno, Washoe County, Nevada, 89505, United States
Reno, Nevada
Key Responsibilities
- check_circleConduct penetration testing and security code reviews
- check_circleManage end-user and administration access for access control
- check_circleCoordinate remediation patching and compliance efforts
- check_circleSet up and maintain proxy servers, systems, and firewalls
- check_circleUpdate security procedures and maintain operations runbooks
- check_circleResearch technology trends for cloud site reliability engineering
- check_circleDesign and implement automated security testing tools and frameworks
- check_circlePerform network and security analysis, troubleshooting, and root cause diagnosis
Requirements
- verifiedBS in Computer Science, IT, or related field
- verified10 years experience or multiple IT certifications
- verified8 years work-related experience
- verifiedActive Top Secret with SCI eligibility
- verifiedSecurity+ or DoD 8570 IAT-II certification
Nice to Have
Certified Kubernetes Application Developer (CKAD), Red Hat Certified Engineer (RHCE), Certified Jenkins Engineer (CJE), AWS Certified DevOps Engineer, Certified Kubernetes Engineer (CKA), GitLab Certified DevOps Professional, or similar certifications. Familiarity with technical aspects for IT and IAT-Level II Certifications. Experience with CI/CD pipelines, infrastructure as code, and containerization technologies. Expertise in cloud platforms, automation tools, scripting languages, and security testing tools. Understanding of AWS, Azure, or GCP and their security services. Understanding of USAF IT systems, networks, and platforms. Experience with Jenkins, GitLab CI, Azure DevOps, or similar tools for automating the build, test, and deployment process. Proficiency with tools like Terraform, Ansible, or CloudFormation to automate infrastructure provisioning and configuration. Familiarity with Docker, Kubernetes, and related technologies. Proficiency in scripting languages like Python, Bash, or PowerShell to automate security tasks and workflows. Experience with static analysis (SAST), dynamic analysis (DAST), and software composition analysis (SCA) tools, as well as vulnerability scanners. Solid understanding of network security principles, including firewalls, intrusion detection/prevention systems, and network segmentation. Familiarity with SIEM solutions (like Splunk or ELK) and log aggregation tools for security monitoring. Familiarity with Identity and Access Management (IAM) and Zero Trust (ZT) security models.
Benefits & Perks
check_circleHealth insurance coveragecheck_circleLife and disability insurancecheck_circleRetirement savings plancheck_circlePaid holidays and paid time offcheck_circleShort- and long-term incentives