DevSecOps Engineer

Chameleon Integrated Services is a growing information technology company specializing in operations management, quality systems, data operations, and cybersecurity. They are seeking a DevSecOps Engineer to lead the DevSecOps workstream, focusing on infrastructure as code, security gates, and container management in a federal IT environment.

Responsibilities:

• Leads the DevSecOps workstream: Terraform/OpenTofu IaC, Ansible CaC, GitHub Actions pipelines, Docker/Kubernetes/Helm, security gates, container hardening, pipeline documentation, and handoff to CBO engineers

Requirements:

• Hands-on Terraform and OpenTofu
• Ansible playbooks/roles and Ansible Vault
• GitHub Actions reusable workflows, matrix builds, and security gates
• Docker image authoring and hardening
• Kubernetes manifests and Helm charts
• Container scanning such as Trivy or Grype
• SAST/secrets/policy-as-code tooling such as Semgrep, Checkov, tfsec, Gitleaks, Detect-Secrets, and OPA/Rego
• Git branching, pull request review, and protected branch workflows
• Federal or regulated environment, NIST SP 800-53, FISMA, FedRAMP, AWS, HashiCorp Vault, Python, and Bash