DevSecOps Engineer (N) at SimIS Inc. – Norfolk, Virginia

100% ONSITE

Who We Are: Founded in 2007, SimIS Inc. is an innovative information technology solution Veteran Owned Small Business (VOSB) that models future environments, requirements, and capabilities, and then secures the enterprise from internal and external threats compliant with Federal, State, and industry standard governance to ensure client mission success. Our performance standard is “excellence,” with an outcomes-based, quality focus in our services and products, guided by our core values of honesty (in word and deed), relationships (confidence and trust with clients and partners), teamwork (shared goals, mission, and purpose), loyalty (allegiance to our client and team), and importance of others (work and win as a team). SimIS is currently recruiting for the listed position.

Job Description:
NATO HQ Supreme Allied Command Transformation (NATO SACT) is seeking contract support to access to leading-edge capabilities necessary to adapt to future threats, integrate advanced technologies to modernize the force, explore long-term military strategy to shape how NATO's forces will operate in the future, and promote interoperability between current and next-generation platforms. To support our NATO customer, SimIS seeks a DevSecOps Engineer to integrate security into every phase of the software development lifecycle, focusing on automation, collaboration, and continuous improvement to deliver secure and compliant software.

Education and Qualifications

• BS degree in Computer Science or related discipline.
• 7 years’ experience as a DevSecOps Engineer.
• Experience in implementing scalable cloud-based environments, service- oriented architectures, and microservices.
• Experience with tools like Jenkins, Ansible, and understanding of CI/CD principles.
• Proficiency with Docker and Kubernetes.
• Strong skills in languages such as Python and Bash.
• Experience using Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).
• Experience with Infrastructure as Code and infrastructure testing strategies.
• Security+ or CISSP certification required.

Responsibilities

• Embed security practices and policies into the entire DevOps process, from planning and coding to deployment and monitoring.
• Implement and maintain automated tools and scripts to perform security audits, vulnerability scanning, and other security tasks.
• Work closely with development and operations teams to ensure security is a shared responsibility and to foster a culture of security awareness.
• Continuously monitor systems for security vulnerabilities and proactively mitigate risks and potential breaches.
• Verify that software and infrastructure meet relevant industry regulations and compliance standards (e.g., GDPR, ISO 27001).

Benefits:

• Medical, Dental, and Vision
• Short-Term Disability (at no cost to you) & Long-Term Disability
• Life Insurance
• 401(k) Savings Plan
• Flex Spending Accounts
• Tuition Assistance Program
• Professional Development
• Paid Time Off (PTO)
• 11 Federal Holidays each year

SimIS, Inc. is an EOE / M / F / Disability / VET / Drug Free Employer