Principal DevSecOps Engineer

This is a U.S. based position. All of the programs we support require U.S. citizenship to be eligible for employment. All work must be conducted within the continental U.S.

Who we are:

Raft (https://TeamRaft.com) is a customer-obsessed non-traditional small business with a purposeful focus on Distributed Data Systems, Platforms at Scale, and Complex Application Development, with headquarters in McLean, VA. Our range of clients includes innovative federal and public agencies leveraging design thinking, cutting-edge tech stack, and cloud-native ecosystem. We build digital solutions that impact the lives of millions of Americans.

About the role:

As a Principal DevSecOps Engineer, you will lead the design, implementation, and management of secure, highly available, and automated software delivery solutions across both cloud and on-premises environments. You will drive the integration of development, security, and operations processes, optimize CI/CD pipelines for performance, scalability, and resilience, and embed advanced security practices throughout the application lifecycle. Collaborating closely with developers, security engineers, and operations teams, you will architect infrastructure-as-code solutions, conduct security assessments, and guide the adoption of emerging tools and technologies. Your leadership will ensure systems meet mission requirements, adhere to compliance standards, and maintain exceptional security and operational performance

This role is contingent on contract award.

What You'll Do:

• Lead the implementation and management of DevSecOps practices across multiple projects and teams, ensuring seamless integration of development, security, and operations processes. Establish strategies, define roadmaps, and drive adoption across the organization.
• Design, implement, and maintain highly automated and secure CI/CD pipelines, incorporating advanced security testing and validation techniques, while optimizing for performance, scalability, and resilience.
• Provide technical leadership and guidance to cross-functional teams (developers, security engineers, and operations staff) on secure system design, deployment, and operation. Mentor junior engineers and foster a culture of security awareness.
• Architect, implement, and manage secure and highly available infrastructure—both cloud-based and on-premises—with a focus on automation and scalability. Design infrastructure-as-code solutions and implement robust monitoring and alerting systems.
• Lead security assessments, penetration testing, vulnerability remediation, and develop and implement security policies and procedures. Conduct threat modeling and risk assessments.
• Develop and maintain comprehensive documentation for systems, processes, and procedures. Contribute to knowledge sharing and training initiatives, including creating architectural diagrams, security documentation, and operational runbooks.
• Conduct Proof of Concepts (POC) to evaluate new DevSecOps tools and technologies and make recommendations for adoption.
• Lead incident response and root cause analysis efforts, focusing on identifying and mitigating security vulnerabilities.
• Develop and deliver DevSecOps training programs.

What We are Looking For:

• MS in Engineering, Computer Science, or a related technical field
• Expert-level proficiency in CI/CD tools and pipelines (Jenkins, GitLab CI, CircleCI, Azure DevOps), including advanced configuration, scripting, and customization.
• Expertise in designing and implementing IAC, configuration management and automation tools ( Ansible, Puppet, Chef, Terraform)
• 10+ years of extensive experience with containerization and orchestration technologies (Docker, Kubernetes, Docker Swarm)
• 10+ years of experience with cloud platforms and designing and implementing secure and scalable cloud architectures(AWS, Azure, Google Cloud)
• Mastery of scripting and programming language (Python, Bash, Go, Java), with the ability to develop custom tools and automation scripts.
• 10+ years of using security best practices, threat monitoring and tools (OWASP, Nessus, Burp Suite, Splunk, SIEM solutions)
• Deep understanding of networking concepts and protocols, including TCP/IP, DNS, HTTP, and TLS.
• Experience with security compliance frameworks and standards
• Experience with Proxmox, including integration with automation and orchestration tools for secure, scalable infrastructure management
• Experience with static and dynamic code analysis tools.
• Active participation in the security projects, conferences and community

Highly Preferred: 

• PH.D in Engineering, Computer Science, or related technical field
• Experience with reverse engineering and malware analysis

Clearance Requirements:

• Active TS clearance with ability to obtain and maintain SCI 

Work Type: 

• Onsite in San Antonio, TX
• May require up to 10% travel

What we will offer you:

• Highly competitive salary
• Fully covered healthcare, dental, and vision coverage
• 401(k) and company match
• Take as you need PTO + 11 paid holidays
• Team off-site in fun places!
• Generous Referral Bonuses
• And More!

Our Vision Statement: 

We bridge the gap between humans and data through radical transparency and our obsession with the mission. 

Our Customer Obsession: 

We will approach every deliverable like it's a product. We will adopt a customer-obsessed mentality. As we grow, and our footprint becomes larger, teams and employees will treat each other not only as teammates but customers. We must live the customer-obsessed mindset, always. This will help us scale and it will translate to the interactions that our Rafters have with their clients and other product teams that they integrate with. Our culture will enable our success and set us apart from other companies.

How do we get there? 

Public-sector modernization is critical for us to live in a better world. We, at Raft, want to innovate and solve complex problems. And, if we are successful, our generation and the ones that follow us will live in a delightful, efficient, and accessible world where out-of-box thinking, and collaboration is a norm. 

Raft’s core philosophy is Ubuntu: I Am, Because We are. We support our “nadi” by elevating the other Rafters. We work as a hyper collaborative team where each team member brings a unique perspective, adding value that did not exist before. People make Raft special. We celebrate each other and our cognitive and cultural diversity. We are devoted to our practice of innovation and collaboration. 

We’re an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.