MetroStar

About the Company

MetroStar is a leading provider of secure digital transformation and Artificial Intelligence (AI)-enabled solutions, specializing in delivering cutting-edge IT services to government agencies and defense organizations. Our work spans AI, Application Modernization, Enterprise IT, and Digital Experience, with a mission to deliver cutting-edge solutions while quickly addressing the needs of a rapidly evolving market.

We are eclectic - coders, creatives, strategists, and everything in between. To find out why we love what we do and to search our open positions, visit us at metrostar.com/join-us

Listed Jobs

Company Name

MetroStar

Job Title

Sr. Cloud Engineer I (6240)

Job Description

**Job title**: Sr. Cloud Engineer I (GCP) **Role Summary** Design, build, and maintain secure, scalable Google Cloud Platform (GCP) infrastructure for a federal customer. Lead IaC, CI/CD, and compliance activities while collaborating with developers, security, and enterprise stakeholders in a cleared environment. **Expectations** * Maintain high availability, reliability, and SLA compliance of cloud services. * Implement federal security standards (FedRAMP, NIST) and enforce best practices. * Deliver documentation and automation that support continuous improvement across teams. **Key Responsibilities** 1. Architect and deploy resilient GCP infrastructure (Compute Engine, Cloud Functions, GKE, BigQuery, VPC, IAM). 2. Develop and maintain IaC using Terraform, Deployment Manager, or similar tools. 3. Support and optimize CI/CD pipelines with GitLab CI, Jenkins, or Cloud Build. 4. Collaborate with developers, cybersecurity, and government partners to streamline deployment workflows. 5. Monitor, troubleshoot, and enhance system performance to ensure uptime and SLA adherence. 6. Enforce federal compliance and governance policies, documenting procedures and controls. 7. Share knowledge through automation scripts and internal documentation to foster continuous improvement. **Required Skills** * 4+ years of cloud engineering, 2+ in GCP environments. * Hands‑on experience with Compute Engine, Cloud Functions, GKE, BigQuery, VPC, IAM. * Proficiency in IaC (Terraform, Ansible, Deployment Manager). * CI/CD tooling (GitLab CI, Jenkins, Cloud Build). * Linux administration, networking fundamentals, and containerization (Docker/Kubernetes). * Agile/Scrum development support. * Ability to work with federal security and compliance standards. **Required Education & Certifications** * Active Secret clearance (TS preferred). * Bachelor’s degree in Computer Science, Information Technology, or related field **or** equivalent work experience. * Relevant GCP professional certifications (e.g., Associate Cloud Engineer, Professional Cloud Architect) are a plus.

Washington, United states

Hybrid

Junior

23-12-2025

Company Name

MetroStar

Job Title

Sr. DevOps Engineer I (6095)

Job Description

**Job title:** Senior DevOps Engineer I **Role Summary:** Design, implement, and maintain secure CI/CD pipelines and infrastructure-as-code solutions in a high‑visibility, classified environment. Drive the integration of security practices throughout the software development lifecycle, support incident response, and mentor teams on secure coding and operations. **Expectations:** - Maintain TS/SCI Clearance (CI Poly) and secure privileged access. - Manage end‑to‑end delivery of secure, compliant software for mission‑critical programs. - Deliver measurable improvement in deployment velocity and security posture. **Key Responsibilities:** - Collaborate with development, operations, and security stakeholders to embed security controls into the SDLC. - Build and maintain CI/CD pipelines that include automated security testing, vulnerability scanning, and compliance checks using tools such as Jenkins, GitLab CI, SonarQube, Fortify, Acunetix, Prisma Cloud. - Develop and maintain IaC templates (Terraform, CloudFormation, Ansible) with security‑first principles for cloud and on‑prem resources. - Perform regular security assessments, code reviews, and penetration testing on applications, codebases, and infrastructure. - Monitor system/application logs, detect, and respond to security incidents. - Implement and manage IAM solutions, ensuring proper authentication and authorization. - Provide guidance on secure coding practices and remediation of findings to software engineers. - Contribute to security policies, procedures, and documentation. - Participate in incident response investigations and remediation efforts. **Required Skills:** - 4–7 years of DevSecOps or equivalent experience integrating security into the SDLC. - Advanced proficiency with CI/CD automation tools (Jenkins, GitLab CI/CD, Artifactory, SonarQube, Selenium). - Extensive experience with containerization (Docker, Kubernetes; OpenShift preferred) and orchestration. - Strong IaC expertise (Terraform, CloudFormation, Ansible). - Scripting in Python and Bash for automation and tool integration. - Knowledge of OWASP, NIST frameworks, and common vulnerability categories. - Ability to secure privileged user access and work within classified environments. **Required Education & Certifications:** - Current Security+ or higher, meeting DoD 8140/8570 standards. - TS/SCI Clearance with CI Poly. - Relevant university degree in Computer Science, Information Technology, or related field preferred but not mandatory.

Reston, United states

Hybrid

Junior

30-12-2025

Company Name

MetroStar

Job Title

Sr. DevSecOps Engineer II (6296)

Job Description

Job Title: Sr. DevSecOps Engineer II Role Summary: Drive integration of security throughout the software development and operations lifecycle by designing, implementing, and maintaining secure CI/CD pipelines, IaC, and cloud infrastructure. Manage threat detection, incident response, and secure coding guidance to ensure all delivered solutions meet security and compliance standards. Expectations: - Lead secure DevOps engineering for high‑value, regulated environments. - Maintain continuous security posture through automated testing and vulnerability management. - Operate with active TS/SCI clearance and comply with security policies. Key Responsibilities: - Collaborate with development, operations, and security teams to embed security into every phase of the SDLC. - Design, implement, and maintain CI/CD pipelines incorporating automated security testing, vulnerability scanning, and compliance verification. - Develop and manage IaC templates (Terraform, CloudFormation, Ansible) with embedded security controls for cloud resources (AWS, Azure, GCP). - Conduct regular security assessments, code reviews, and penetration tests to identify and remediate vulnerabilities. - Monitor system and application logs, analyze incidents, and respond to security events in a timely manner. - Implement and oversee IAM solutions, ensuring proper authentication and authorization for users, services, and third‑party integrations. - Provide secure coding guidance to software engineers and lead remediation of identified security findings. - Participate in incident response activities and coordinate investigations of security incidents. - Draft, review, and update security policies, procedures, and documentation. Required Skills: - 7+ years of experience in DevSecOps or equivalent roles focused on security integration. - Proven expertise with CI/CD tools (Jenkins, GitLab CI/CD, Artifactory, SonarQube, Selenium, Fortify, Acunetix, Prisma Cloud). - Advanced knowledge of IaC tools (Terraform, CloudFormation, Ansible) and secure configuration best practices. - Deep experience securing cloud environments across AWS, Azure, and GCP. - Proficiency in scripting languages such as Python and Bash for automation and tool integration. - Strong understanding of vulnerability management, threat modeling, and incident response. - Ability to analyze logs, detect anomalies, and orchestrate mitigation strategies. - Excellent collaboration, documentation, and communication skills. Required Education & Certifications: - Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent professional experience). - Active TS/SCI clearance with CI polygraph. - Relevant certifications (e.g., AWS Certified Security – Specialty, Azure Security Engineer Associate, Google Professional Cloud Security Engineer, Certified DevSecOps Professional, OSCP) strongly preferred.

Tysons corner, United states

On site

Senior

30-12-2025

Company Name

MetroStar

Job Title

Sr. Cybersecurity Analyst I (6265)

Job Description

**Job Title:** Sr. Cybersecurity Analyst I **Role Summary:** Guide government clients through the acquisition and maintenance of Authority to Operate (ATO) certifications for information systems. Apply expertise in federal cybersecurity standards to monitor, analyze, and respond to security incidents, ensuring compliance with Government ATO requirements. **Expectations:** - Maintain an active TS//SCI clearance with CI Polygraph. - Demonstrate 4–7 years of specialized experience in government ATO support. - Achieve and sustain ATO status for cloud services and solutions from IL5 to IL6+ on NIPR, SIPR, and JWICS. **Key Responsibilities:** 1. Lead ATO assessments, documentation, and remediation for government systems. 2. Apply NIST SP 800‑53, RMF, ICD 503, FISMA, FedRAMP frameworks to evaluate and certify systems. 3. Conduct vulnerability scans, IDS/IPS monitoring, and network security reviews. 4. Respond to security incidents, perform forensic analysis, and coordinate containment and recovery. 5. Communicate technical findings to both technical and non‑technical stakeholders. 6. Maintain system configuration baseline and manage continuous compliance monitoring. **Required Skills:** - In‑depth knowledge of government cybersecurity regulations and ATO processes. - Proficiency with ATO assessment tools, vulnerability scanners, and intrusion detection/prevention systems. - Strong incident response and forensic analysis capabilities. - Understanding of network protocols, operating systems, and enterprise infrastructure. - Excellent written and verbal communication. - Ability to translate complex security requirements into actionable plans. **Required Education & Certifications:** - Bachelor’s degree in Cybersecurity, Computer Science, Information Assurance, or related field. - CISSP or equivalent certification (e.g., CISM, G-CHS) to meet DoD 8140 requirements.

Reston, United states

On site

Junior

30-12-2025