SecureStrux®

About the Company

SecureStrux(r) is a cybersecurity, engineering, risk and compliance firm. Our team defends hundreds of Defense Industrial Base, multinational corporations, and governmental agencies with the practical advice and technology solutions they need to prevent breaches, address risk, respond to threats, remediate vulnerabilities and monitor cyber activity. SecureStrux(r) works with clients to assist them with their defense testing and effectively managing their critical cyber challenges while developing and implementing the policies, procedures and programs needed to create a sustainable, compliant, and secure environment. Our Mission: We are a committed team of experts that unite around a singular goal: combine talented people and leading-edge technologies to make the world a better, safer place both at home and abroad. We leave a lasting impact on our teams, clients, and community by delivering unparalleled service with each engagement. Our services include: Staff Augmentation (ex. ISSO Staffing) ACAS, Endpoint, Splunk Training CMMC, RMF, CCRI Compliance & Consulting CMMC C3PAO IT System Compliance Policy Consulting, Documentation, and Automation IT System & Cyber Security Architecture, Engineering, and Configuration Vulnerability Assessments & Scanning SIPRNet & NIPRNet Engineering System & Network Hardening Penetration (Pentest) Testing Azure and AWS Cloud Management DFARS Compliance & Consulting Established in 2013 with deep roots in the DoD cybersecurity community, SecureStrux(r) has a dynamic and talented team of industry-certified professionals that serve some of our country's largest public and private organizations. We are committed to empowering our clients with the knowledge and tools needed to build and successfully maintain their cybersecurity programs. CMMC Certified C3PAO, ISO 9001, 27000 certified, 4x INC 5000 Fastest Growing & 3x Best Places to Work Company. 2x Gold Hire Vets Awardee.

Listed Jobs

Company Name

SecureStrux®

Job Title

DevSecOps Engineer

Job Description

**Job Title** DevSecOps Engineer **Role Summary** Build, manage, and secure end‑to‑end DevSecOps workflows for the C2BMC program. Deliver Infrastructure‑as‑Code (IaC) across Windows and Linux, automate secure software stacks, enforce DoD STIG baselines, and maintain a single source of truth for configuration and secrets. Evaluate and integrate new tools while providing technical guidance to the team. **Expectations** - 9+ years of professional experience with a Bachelor’s degree (or 7+ years with a Master’s). - Active Secret clearance and IAT Level II (Security+ or equivalent). - 3‑5 years of hands‑on DevSecOps/DevOps in a high‑security, mission‑critical environment. - Proven capability to design, code, review, and maintain secure IaC solutions. - Strong understanding of SDLC, secure coding, and compliance automation. **Key Responsibilities** - Design, author, and maintain IaC templates (Ansible, Packer, Terraform) for Windows Server, RHEL/CentOS, and Ubuntu. - Build automated pipelines that provision, harden, and deploy systems, integrating unit tests, vulnerability scans, and compliance checks. - Develop reusable Ansible playbooks to apply DoD STIGs, track compliance drift, and remediate issues automatically. - Establish a single source of truth for inventory, variables, and secrets; implement secure secret management via Vault, Azure Key Vault, or AWS Secrets Manager. - Prototype, evaluate, and deploy new containers, orchestrators, and platform services (Docker, Podman, Kubernetes/OpenShift) to keep the stack current. - Produce documentation, conduct training, and support knowledge transfer of new tools and processes. - Participate in on‑call rotations, troubleshoot production incidents, and drive continuous improvement of security and reliability. **Required Skills** - Advanced Ansible (playbook development, role creation, inventory management). - Containerization (Docker/Podman) and orchestration (Kubernetes/OpenShift). - Expert scripting in Python, Bash, PowerShell. - CI/CD proficiency (GitLab CI/CD, Jenkins, Azure DevOps, GitHub Actions). - Git workflow mastery (branching, pull‑requests, code ownership). - IaC tools: Terraform, Packer. - Monitoring/observability: Prometheus, Grafana, ELK/EFK, Splunk. - Secret management: HashiCorp Vault, Azure Key Vault, AWS Secrets Manager. - Compliance automation: OpenSCAP, Inspec, Chef InSpec. - Network fundamentals (TCP/IP, VLANs, routing, firewalls, VPN). - Incident response and troubleshooting in complex, multi‑layered environments. **Required Education & Certifications** - Bachelor’s in Computer Science, Information Technology, or related field (minimum 9 years experience) or Master’s (minimum 7 years). - Active Secret clearance. - IAT Level II (Security+ or equivalent).

Huntsville, United states

On site

Senior

26-01-2026