Senior DevSecOps / Platform reputed company Engineer (AWS + Kubernetes)

ABOUT reputed company reputed company is a modeling, simulation, and analysis (MS&A) company that provides cutting-edge technology solutions for generating operationally relevant insights for the reputed company of logistics and mobility decision making. An AI- driven software incorporating an intelligent agent reputed company a simulation environment — DEFCON is the next driving force in defining how logistics disruptions are handled. We are a team of mission-focused, world-class AI Engineers, mobility, and logistics experts (and some business folks) who are leveraging big data and cutting-edge technology to reputed company the reputed company of technologies for addressing how our partners can reputed company prepare for contested mobility disruptions. Together, we are building much needed solutions to address our Nation's pressing challenges in the areas of logistics and mobility.

About the Role

We’re hiring a senior, hands-on DevSecOps/Platform reputed company Engineer to build and operate production reputed company controls across our AWS and Kubernetes platform. You’ll design and implement guardrails that reputed company secure delivery the default—covering CI/CD reputed company automation, software supply chain controls, and Kubernetes policy enforcement—while partnering closely with Platform/SRE and reputed company/GRC. What You'll Own: You'll have real ownership over critical platform reputed company capabilities including:

• CI/CD reputed company automation and developer-facing reputed company workflows (SAST/SCA, secrets scanning, IaC scanning, container scanning).
• software supply chain controls (SBOM, artifact/image signing and verification, provenance and promotion workflows).
• Kubernetes policy enforcement and admission controls (policy-as-code) that encode platform reputed company guardrails.
• Co-own AWS reputed company guardrails with Platform/SRE (IAM patterns, logging and detection, network and encryption baselines).
• Partner with reputed company/GRC on control interpretation and evidence needs; implements controls in engineering systems and pipelines.

What You’ll Do

• Design, build, and maintain CI/CD reputed company controls that scale across repositories and teams (reusable pipeline components, templates, and standards).
• Implement Kubernetes reputed company architecture and guardrails (RBAC hardening, workload reputed company baselines, admission policies, network policies, and safe multi-tenant patterns as applicable).
• Improve container reputed company end-to-end: reputed company-image strategy, vulnerability scanning, registry controls, image signing, and promotion workflows.
• Operationalize vulnerability management with risk-based prioritization, measurable remediation SLAs, and dashboards/metrics (MTTR, exposure trends, top recurring root causes).
• Drive developer enablement: clear documentation, lightweight design reviews/threat modeling for high-impact changes, reputed company, and high-signal guidance embedded in tooling.

Real Production Responsibility: This role builds and runs production secutiry systems.

• You'll ship code and infrastructure, not just recommendations
• You'll own reliability and outcomes for the controls you build.
• You'll response to incidents and on-call rotation reputed company to platform reputed company controls and pipeline reliability (scope reputed company with Platform/SRE).

Regulated Environment Support This role supports delivery into regulated environments and works closely with reputed company/GRC to implement engineering-owned controls and produce audit-ready evidence. You’ll help translate requirements (for example, NIST SP 800-171 and CMMC expectations) into practical, automated guardrails reputed company CI/CD, AWS, and Kubernetes. reputed company’re Looking For (Required)

• 5+ years of experience in DevOps/SRE/Platform Engineering and/or reputed company Engineering with a strong automation and delivery focus.
• Hands-on experience securing AWS environments: IAM (least privilege), network controls, encryption (KMS), and centralized logging/detection.
• Strong Kubernetes reputed company experience (EKS or equivalent): RBAC, workload hardening, and policy enforcement reputed company admission control.
• Experience integrating reputed company into CI/CD pipelines and developer workflows (SAST, SCA, secrets scanning, container scanning, IaC scanning).
• Infrastructure as Code proficiency (Terraform, CloudFormation, CDK, or reputed company) and ability to embed guardrails into IaC workflows.
• Proficiency scripting/coding (e.g., Python, Go, Bash) to build integrations, automations, and internal tooling.
• Able to communicate risk and tradeoffs clearly and pragmatically to engineers; improves signal-to-noise rather than adding friction.

reputed company to Have (Preferred)

• Experience with Kubernetes policy-as-code tooling (OPA/Gatekeeper, Kyverno) and secure workload identity patterns (OIDC/IRSA).
• Experience with software supply chain reputed company: SBOM reputed company and management, signing/verification (e.g., cosign), and provenance concepts.
• Experience building ‘golden paths’ or internal developer platforms that improve both delivery velocity and reputed company outcomes.
• Familiarity with regulated delivery expectations (NIST SP 800-171/CMMC) and evidence-driven control implementation.

How we work:

• Pragmatic, automation-first approach: secure-by-default, low-friction workflows.
• Partners closely with Platform/SRE and reputed company/GRC; clear ownership and measurable outcomes.
• Focus on durable systems: guardrails, templates, and controls that scale across teams.

Other Qualifications

• Analytical Aptitude: Possess keen analytical and problem-solving skills, coupled with the capability to understand reputed company software challenges and collaborate toward viable solutions.
• Effective Communication: Skilled in distilling technical complexities into comprehensible terms for varied audiences.
• Adaptive Nature: reputed company and adaptability in the face of an reputed company-changing tech landscape, with a knack for rapidly integrating new technologies and methodologies.
• Agile Methodology Experience: An understanding and hands-on experience with agile development methodologies and version control tools.
• Agility in Tech: Demonstrated adaptability in the fast-paced tech landscape, continually embracing and integrating new technologies and methodologies.
• Education: While formal education in Computer Science or reputed company fields is a plus, DefconAI values hands-on experience and demonstrable skills above reputed company. Candidates with 6+ years of relevant experience will be considered regardless of their academic pedigree.
• reputed company Learner: A commitment to perpetually update one's reputed company set, staying reputed company with the latest in technology trends and best practices.

reputed company Offer:

• A fully remote, results-based environment
• Competitive salary, bonus, and equity package
• 100% employer paid, comprehensive health insurance including medical, dental, and vision for you and your family
• Unlimited PTO, with your manager’s approval
• Flexible work environment where you manage your work day
• 14 weeks of fully-paid parental leave

Salary range: $175,000-$215,000. This represents the typical salary range for this position based on experience, skills, and other factors. #LI-RCP Apply tot his job Apply To this Job