DevSec Ops Engineer

ABOUT THE TEAM

Anduril's Air & Missile Defense Radar team develops cutting-edge tracking algorithms and software systems that detect, track, and characterize airborne threats in real-time. Working in small, focused teams, our software engineers design and implement sophisticated tracking solutions that protect lives and critical assets. Our work spans the full spectrum—from developing novel multi-target tracking algorithms to building high-performance distributed systems that process massive amounts of sensor data in milliseconds.

ABOUT THE JOB

We are seeking a DevSecOps Engineer to build and maintain the secure automation infrastructure that powers our radar tracking deployments. You'll design CI/CD pipelines, implement Infrastructure-as-Code, and establish continuous compliance workflows that enable our engineering teams to deploy updates rapidly while meeting stringent DoD and IC security requirements.
 

WHAT YOU WILL DO

• Design and implement secure CI/CD pipelines for classified environments, enabling automated build, test, and deployment of radar tracking software across multiple enclaves
• Build Infrastructure-as-Code frameworks (Terraform, Ansible, or similar) to provision and configure development, test, and production environments that meet DISA STIG and NIST 800-53 requirements
• Automate security compliance workflows, including STIG scanning, vulnerability assessment, configuration validation, and compliance reporting for continuous monitoring
• Develop containerization and orchestration solutions (Docker, Kubernetes) tailored for classified networks with appropriate security hardening
• Implement secrets management, certificate rotation, and access control systems that balance security with developer productivity
• Create monitoring and logging infrastructure to support security operations, troubleshooting, and incident response
• Collaborate with software engineers to optimize build processes, reduce deployment friction, and integrate security controls early in the development lifecycle
• Support ATO preparation and continuous monitoring by generating compliance artifacts, evidence packages, and security documentation
• Partner with system administrators and ISSM/ISSO personnel to ensure deployed systems meet customer security requirements 

REQUIRED QUALIFICATIONS

• 5+ years of experience and a Bachelor's degree in Computer Science, Engineering, Cybersecurity, or related field (or equivalent experience)
• Strong hands-on experience with CI/CD tools such as GitLab CI, Jenkins, GitHub Actions, or similar
• Proficiency with Infrastructure-as-Code using Terraform, Ansible, Puppet, Chef, or similar tools
• Working knowledge of containerization technologies (Docker) and orchestration platforms (Kubernetes, Docker Swarm)
• Understanding of Linux system administration, networking, and scripting (Python, Bash)
• Familiarity with DoD security frameworks (RMF, NIST 800-53, DISA STIGs)
• Ability to obtain and maintain a U.S. Top Secret SCI security clearance

DESIRED QUALIFICATIONS

• Experience deploying and maintaining systems in classified DoD or IC environments
• Hands-on experience with ATO processes, STIG implementation, and continuous monitoring for accredited systems
• Familiarity with SCAP-compliant scanning tools (OpenSCAP, Nessus, ACAS) and automated compliance frameworks
• Experience with secure software supply chain practices, artifact signing, and software bill of materials (SBOM)
• Knowledge of zero-trust architectures and microsegmentation in Kubernetes environments
• Experience with GitOps workflows and declarative infrastructure management
• Proficiency with observability and monitoring tools (Prometheus, Grafana, ELK stack, Splunk)
• Understanding of PKI, certificate management, and secrets management solutions (Vault, AWS Secrets Manager)
• Experience with air-gapped or disconnected network deployments
• Familiarity with real-time or embedded systems and their unique deployment constraints
• Active U.S. Top Secret SCI clearance
• Relevant certifications such as Security+, CISSP, or AWS/Azure security certifications