ZipRecruiter

Log In

1

Senior Devsecops Engineer Jobs in McLean, VA (NOW HIRING)

Business Integra

Senior DevSecOps Engineer

Fort Belvoir, VA ยท On-site

$129.50K - $177.50K/yr

Senior DevSecOps Engineer Location: Fort Belvoir, VA Clearance: Top Secret Position Overview We are seeking an experienced Senior DevSecOps Engineer to lead the design, implementation, and management ...

Accenture Federal Services

Sr. DevSecOps Engineer

Reston, VA

$119.10K - $163.30K/yr

As Sr. DevSecOps Engineer, you'll play a critical role in designing, implementing, and maintaining secure and efficient software development and deployment pipelines. You will collaborate with cross ...

Smart Synergies

Senior DevSecOps Engineer

Mclean, VA ยท Hybrid

$117.50K - $161.10K/yr

We have an urgent opening for a highly experienced Senior DevSecOps Engineer to support federal workloads operating in AWS GovCloud. This hybrid position focuses on DevSecOps best practices, cloud ...

Base2 Solutions

Sr. DevSecOps Engineer 5

Reston, VA ยท On-site

$187.35K - $212.33K/yr

Senior DevSecOps Engineer * Required Security Clearance: Top Secret/SCI with CI Polygraph * Location: Reston, VA * Work Type: On-Site * Shift: First * Referral Eligibility: Eligible * U.S.

Accenture

Sr. DevSecOps Engineer

Reston, VA ยท On-site

$157.80K - $184.90K/yr

As Sr. DevSecOps Engineer, you'll play a critical role in designing, implementing, and maintaining secure and efficient software development and deployment pipelines. You will collaborate with cross ...

Oteemo, Inc

Sr. DevSecOps Engineer

College Park, MD

$113.20K - $155.20K/yr

The Sr. DevSecOps Engineer will lead the design, implementation, and operation of secure, scalable cloud-native infrastructure, platforms, and CI/CD pipelines for mission-critical Department of ...

Oteemo, Inc

Sr. DevSecOps Engineer

College Park, MD ยท On-site

$113.20K - $155.20K/yr

The Sr. DevSecOps Engineer will lead the design, implementation, and operation of secure, scalable cloud-native infrastructure, platforms, and CI/CD pipelines for mission-critical Department of ...

Base-2 Solutions, LLC

Sr. DevSecOps Engineer 5

Reston, VA ยท On-site

$187.35K - $212.33K/yr

Senior DevSecOps Engineer * Required Security Clearance: Top Secret/SCI with CI Polygraph * Location: Reston, VA * Work Type: On-Site * Shift: First * Referral Eligibility: Eligible * U.S.

Eliassen Group

Sr. DevSecOps Engineer

Washington, DC ยท Remote

$174K - $220K/yr

Onsite in washington, DC Our client seeks a Sr. DevSecOps Engineer to design, secure, and operate CI/CD pipelines and cloud infrastructure across classified environments. You will lead automation ...

Oteemo, Inc

Sr. DevSecOps Engineer

College Park, MD ยท On-site

$113.20K - $155.20K/yr

The Sr. DevSecOps Engineer will lead the design, implementation, and operation of secure, scalable cloud-native infrastructure, platforms, and CI/CD pipelines for mission-critical Department of ...

Steampunk, Inc.

Senior DevSecOps Engineer

Mclean, VA ยท On-site

$131.70K - $169.20K/yr

They are seeking a Senior DevSecOps Engineer to work with their growing DevSecOps practice, delivering features to support cloud and application development while ensuring systems are secure against ...

Eliassen Group

Sr. DevSecOps Engineer

Washington, DC ยท Remote

$174K - $220K/yr

Onsite in washington, DC Our client seeks a Sr. DevSecOps Engineer to design, secure, and operate CI/CD pipelines and cloud infrastructure across classified environments. You will lead automation ...

Accenture Federal Services

Sr. DevSecOps Engineer

Reston, VA ยท On-site

$157.80K - $184.90K/yr

As Sr. DevSecOps Engineer, you'll play a critical role in designing, implementing, and maintaining secure and efficient software development and deployment pipelines. You will collaborate with cross ...

Steampunk

Senior DevSecOps Engineer

Mclean, VA ยท Remote

$150K - $185K/yr

As a Senior DevSecOps Engineer , you will work with our growing DevSecOps practice delivering features to support cloud and application development. We are looking for candidates with 5-7 years of ...

Steampunk

Senior DevSecOps Engineer

Mclean, VA ยท On-site

$150K - $185K/yr

Overview As a Senior DevSecOps Engineer, you will work with our growing DevSecOps practice delivering features to support cloud and application development. We are looking for candidates with 5-7 ...

CACI International, Inc.

Senior DevSecOps Engineer

Chantilly, VA ยท On-site

$117.20K - $160.70K/yr

Senior DevSecOps Engineer Job Category: Engineering Time Type: Full time Minimum Clearance Required to Start: TS/SCI with Polygraph Employee Type: Regular Percentage of Travel Required: Up to 10% ...

next page

Showing results 1-20

People also search for

All JobsSenior Devsecops Engineer JobsSenior Devsecops Engineer Jobs in McLean, VA

Senior Devsecops Engineer information

See McLean, VA salary details

$61K

$129.8K

$188.2K

How much do senior devsecops engineer jobs pay per year?

As of May 28, 2026, the average yearly pay for senior devsecops engineer in McLean, VA is $129,828.00, according to ZipRecruiter salary data. Most workers in this role earn between $107,200.00 and $147,200.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Senior DevSecOps Engineer, and why are they important?

To thrive as a Senior DevSecOps Engineer, you need expertise in cloud infrastructure, automation, secure software development, and a strong background in cybersecurity, often backed by a degree in computer science or a related field. Familiarity with tools like Jenkins, Terraform, Docker, Kubernetes, and security frameworks such as NIST, as well as certifications like AWS Certified DevOps Engineer or CISSP, is highly valued. Strong problem-solving abilities, collaboration, and clear communication distinguish top performers in this role. These skills are essential to seamlessly integrate security into the development lifecycle, ensuring robust, scalable, and compliant systems.

How does a Senior DevSecOps Engineer typically collaborate with development and security teams to streamline secure software delivery?

A Senior DevSecOps Engineer works closely with both development and security teams to embed security practices throughout the software development lifecycle. This collaboration often involves conducting threat modeling sessions, integrating automated security testing tools into CI/CD pipelines, and providing guidance on secure coding practices. Regular communication and joint problem-solving are key to ensuring that security measures do not hinder development speed, while still maintaining robust protection for applications and infrastructure. This role often acts as a bridge between teams, translating security requirements into actionable steps for developers and ensuring compliance with industry standards.

What are Senior DevSecOps Engineers?

Senior DevSecOps Engineers are experienced IT professionals who integrate security practices into every phase of the software development and deployment process. They work at the intersection of development, operations, and security, ensuring that applications are secure, scalable, and efficiently delivered. Their responsibilities include automating security checks, managing infrastructure as code, overseeing compliance requirements, and mentoring teams on secure coding and deployment practices. Senior DevSecOps Engineers also evaluate and implement security tools, respond to incidents, and help create a culture of security within the organization.

What is the difference between Senior Devsecops Engineer vs Devsecops Engineer?

AspectSenior Devsecops EngineerDevsecops Engineer
CredentialsTypically requires 5+ years experience, certifications like CISSP, AWS, or AzureEntry to mid-level, often with similar certifications but less experience required
Work EnvironmentLeads security integrations, mentors teams, manages complex projectsSupports security automation, implements CI/CD security practices
Industry UsageUsed across tech, finance, healthcare, and enterprise sectorsCommon in startups, tech companies, and organizations adopting DevSecOps

The main difference lies in experience and responsibility. Senior Devsecops Engineers typically lead security initiatives and mentor teams, while Devsecops Engineers focus on implementing security within development pipelines. Both roles require similar certifications and are vital in organizations prioritizing security in software development.

What are popular job titles related to Senior Devsecops Engineer jobs in McLean, VA? For Senior Devsecops Engineer jobs in McLean, VA, the most frequently searched job titles are:
What job categories do people searching Senior Devsecops Engineer jobs in McLean, VA look for? The top searched job categories for Senior Devsecops Engineer jobs in McLean, VA are:
What cities near McLean, VA are hiring for Senior Devsecops Engineer jobs? Cities near McLean, VA with the most Senior Devsecops Engineer job openings:
Senior Devsecops Engineer jobs near you
Senior DevSecOps Engineer

Senior DevSecOps Engineer

Business Integra

Fort Belvoir, VA โ€ข On-site

$129.50K - $177.50K/yr

Full-time

This job post hasย expired today.ย Applications are no longer accepted.

Job description

Job Title: Senior DevSecOps Engineer
Location: Fort Belvoir, VA
Clearance: Top Secret
Position Overview
We are seeking an experienced Senior DevSecOps Engineer to lead the design, implementation, and management of secure CI/CD pipelines and cloud infrastructure. The ideal candidate will be responsible for automating deployment processes, ensuring security throughout the software development lifecycle, and maintaining robust, scalable infrastructure on Azure. This role requires expertise in modern DevOps tools, security best practices, and experience with Angular frontend and Java/Node.js backend applications.
Key Responsibilities
CI/CD Pipeline Development
  • Design and implement comprehensive CI/CD pipelines using Jenkins for Angular frontend and Java/Node.js backend applications
  • Integrate SonarQube for continuous code quality analysis, technical debt management, and code coverage reporting
  • Implement Fortify static application security testing (SAST) within build pipelines for vulnerability detection
  • Automate build, test, and deployment processes with integrated security scanning and quality gates
  • Implement multi-environment deployment strategies (development, staging, production) with proper promotion workflows
  • Configure automated testing integration including unit tests, security scans, and performance testing
  • Develop blue-green and canary deployment strategies for zero-downtime releases

Infrastructure as Code & Cloud Management
  • Design and maintain Azure cloud infrastructure using Terraform for scalable, repeatable deployments
  • Implement infrastructure automation with proper state management and version control
  • Manage Azure Kubernetes Service (AKS) clusters for containerized application deployments
  • Design and implement serverless solutions using Azure Functions for event-driven architectures
  • Optimize cloud resource utilization and cost management strategies

Container Orchestration & Management
  • Create and maintain Helm Charts for Kubernetes application deployments
  • Implement container security best practices including image scanning and vulnerability management
  • Design service mesh architectures for microservices communication and security
  • Manage container registries with automated image building and security scanning
  • Implement monitoring and logging solutions for containerized applications

Security Integration (DevSecOps)
  • Integrate SonarQube for comprehensive code quality analysis, security hotspots detection, and maintainability metrics
  • Implement Fortify SAST scanning within CI/CD pipelines for identifying security vulnerabilities in source code
  • Configure quality gates and security thresholds to prevent vulnerable code from reaching production
  • Integrate additional security tools and practices throughout the CI/CD pipeline (shift-left security)
  • Implement automated security scanning (SAST, DAST, dependency scanning, container scanning)
  • Design and maintain secrets management using Azure Key Vault and secure credential handling
  • Implement compliance monitoring and automated security policy enforcement
  • Conduct security assessments and vulnerability remediation for infrastructure and applications
  • Generate security reports and metrics for compliance and audit purposes

Version Control & Collaboration
  • Maintain Git repositories with proper branching strategies and merge workflows
  • Implement Git hooks for automated code quality and security checks
  • Design and enforce code review processes and approval workflows
  • Manage infrastructure and configuration version control with GitOps practices
  • Implement automated documentation generation and maintenance

Monitoring & Observability
  • Design comprehensive monitoring solutions
  • Implement alerting strategies for infrastructure, applications, and security events
  • Create dashboards for system performance, deployment metrics, security posture, and code quality trends
  • Implement distributed tracing and performance monitoring for microservices
  • Design disaster recovery and backup strategies with automated testing

Platform Engineering
  • Build and maintain internal developer platforms and self-service capabilities
  • Create standardized deployment templates and development environments
  • Implement environment provisioning automation for development teams
  • Design and maintain development toolchains and build systems
  • Provide technical guidance and support to development teams on DevSecOps practices

Required Qualifications
Technical Skills
  • 5+ years of DevOps/DevSecOps experience with focus on cloud-native applications
  • Security+ certification required
  • Expert-level proficiency with Terraform for infrastructure as code and Azure resource management
  • Strong experience with Jenkins for CI/CD pipeline development and automation
  • Hands-on experience with SonarQube including:
    • Server administration and configuration
    • Quality gates and quality profiles setup
    • Integration with build pipelines (Maven, npm)
    • Custom rules configuration and code coverage analysis
    • Security hotspots management and remediation workflows
  • Proven experience with Fortify including:
    • Static Code Analyzer (SCA) integration in CI/CD pipelines
    • Fortify Software Security Center (SSC) administration
    • Vulnerability assessment and remediation workflows
    • Security rule customization and false positive management
  • Proficiency with Git including advanced workflows, branching strategies, and repository management
  • Hands-on experience with Helm Charts for Kubernetes application packaging and deployment
  • Extensive Azure cloud experience including:
    • Azure Kubernetes Service (AKS)
    • Azure DevOps and Azure Pipelines
    • Azure Functions and serverless architectures
    • Azure Key Vault and security services
    • Azure Monitor and Log Analytics
  • Experience building CI/CD pipelines for Angular frontend applications including:
    • Node.js build processes and npm/yarn workflows
    • Frontend testing automation (Jest, Cypress)
    • Static code analysis and accessibility testing
    • CDN deployment and caching strategies
  • Experience with Java and Node.js backend deployments including:
    • Maven/Gradle build automation
    • JUnit test integration and code coverage
    • Database migration and schema management
    • API testing and service mesh integration

Security & Compliance
  • Strong DevSecOps background with security-first mindset
  • Experience with security scanning tools (SonarQube, Fortify)
  • Knowledge of OWASP Top 10 and secure coding practices
  • Understanding of Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST)
  • Knowledge of compliance frameworks (SOC 2, PCI-DSS, GDPR)
  • Understanding of zero-trust architecture and network security principles
  • Experience with secrets management and secure credential handling

Additional Technical Requirements
  • Proficiency in scripting languages (PowerShell, Bash, Python)
  • Experience with Docker containerization and container security best practices
  • Knowledge of monitoring tools (Prometheus, Grafana, ELK stack)
  • Understanding of database technologies and data pipeline security
  • Familiarity with service mesh technologies (Istio, Linkerd)
  • Experience with backup and disaster recovery planning and implementation

Soft Skills
  • Strong analytical and problem-solving abilities
  • Excellent communication and collaboration skills
  • Ability to work independently and lead technical initiatives
  • Experience mentoring development teams on DevSecOps practices
  • Detail-oriented approach with focus on security and reliability
  • Adaptability to learn new technologies and cloud services

Preferred Qualifications
  • Bachelor's degree in Computer Science, Information Technology, or related field
  • Azure certifications (Azure DevOps Engineer Expert, Azure Security Engineer Associate)
  • Kubernetes certifications (CKA, CKAD, CKS)
  • Fortify certification or advanced Fortify training
  • Experience with chaos engineering and resilience testing
  • Familiarity with GitLab CI/CD as alternative CI/CD solutions
  • Experience with infrastructure monitoring and capacity planning
  • Knowledge of cost optimization strategies for cloud resources

Technical Environment
  • Cloud Platform: Microsoft Azure
  • Infrastructure: Terraform, Helm Charts, Docker, Kubernetes
  • CI/CD: Jenkins
  • Security Tools: SonarQube, Fortify SCA/SSC
  • Applications: Angular frontend, Java/Node.js backend
  • Scripting: PowerShell, Bash, Python, YAML

Business Integra, Inc. and our affiliates are equal opportunity employers, committed to diversity and inclusion. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, sexual orientation, gender identity or expression, religion, age, pregnancy, disability, work-related injury, covered veteran status, political ideology, marital status, or any other factor that the law protects from employment discrimination.
Business Integra requires new employees to be fully vaccinated for COVID-19 as defined by the CDC, subject to applicable, verified accommodation requests.
We utilize e-Verify to check employment authorization.
EEO/AA/F/M/Vet/Disabled

Apply