Senior DevSecOps Engineer

Overview Auria is looking to hire a Senior DevSecOps Engineer to support the C2BMC program. This role is ONSITE in Colorado Springs, CO. The Command and Control, Battle Management, and Communications (C2BMC) program is a key component of the Missile Defense System. It enables the U.S. president, the secretary of defense, and combatant commanders at strategic, regional, and operational levels to plan ballistic missile defense operations, monitor the battle, and dynamically control networked sensors and weapon systems to achieve global and regional mission goals. C2BMC supports layered missile defense capabilities and serves as a force multiplier by networking, integrating, and synchronizing autonomous sensor and weapon systems and operations globally and regionally to improve performance. C2BMC is essential for all ground and flight tests that verify and demonstrate current and future missile defense system capabilities. WHAT YOU CAN EXPECT TO DO Infrastructure-as-Code (IaC) Development Design, write, and maintain IaC templates for Windows and Linux platforms using: Ansible, Packer, Python, and other scripting languages Ensure all code is version-controlled, reviewed, and compliant with C2BMC's security standards Fully automated Software Stack Build and operate an end-to-end automation pipeline that provisions, hardens, and configures systems for the C2BMC program Integrate automated testing, vulnerability scanning, and compliance verification into the stack STIG Baseline Hardening Automation Develop reusable Ansible playbooks and custom scripts that automatically apply the DoD STIG and baseline to C2BMC systems Track and remediate any compliance drift on an ongoing basis Configuration-Management Baseline Establish a single source of truth for all configuration data (inventory, variables, and secrets) that feeds Ansible automation Implement secure secret management (Vault, Azure Key Vault, AWS Secrets Manager, etc.) and enforce idempotent deployments Tooling & Technology refresh Evaluate, prototype, and stand up new tools, containers, and services to keep C2BMC ahead of emerging technological trends Provide documentation, training, and knowledge transfer for any new capabilities introduced to the team 3-5 years of hands-on DevSecOps/DevOps experience in a high-security, mission-critical environment Proven ability to write clean, maintainable code and familiarity with the software development lifecycle (SDLC) Deep knowledge of Linux (RHEL, CentOS, Ubuntu) and/or Windows Server (2016/2019/2022) administration, including hardening and patch management Direct experience implementing security baselines (STIG, CIS, NIST), vulnerability remediation, or hardening automation Basic network fundamentals, including an understanding of TCP/IP, VLANs, routing, firewalls, VPNs, and basic network troubleshooting WHAT THE TEAM REQUIRES Mission-Driven Professional: Collaborative contributor motivated by the opportunity to develop cutting-edge solutions that protect and serve both the nation and the world. Education & Experience: A Bachelor's Degree in Computer Science, Systems Engineering, Software Engineering, Engineering, Mathematics, Physics, or a related field from an accredited university is preferred, along with 8 years of experience; or a Master's degree (preferred) in a related field with 6 years of relevant work experience; or PhD in a related discipline with 4 years of relevant work experience Security Certification & Clearance: Applicants must have a current, active DoD 8140 certification at IAT Level II or higher at the time of application, and must maintain it throughout the contract; applicants must have a current, active in-scope DoD-issued Secret security clearance at the time of application, which is required to start Technical Proficiencies: Ansible - Advanced proficiency in playbook development, role creation, inventory management, and the Ansible Automation Platform Containerization: Strong experience building, packaging, and deploying containerized applications (Docker, Podman) and orchestrating them with Kubernetes or OpenShift Scripting Languages: Expert-level scripting in Python, Bash, and/or PowerShell for automation, data manipulation, and API integration CI/CD Platforms: Hands-on with GitLab and CI/CD (Jenkins, Azure DevOps, GitHub Actions) to design pipelines that include unit tests, security scans, and automated deployments Version Control: Mastery of Git & workflows, pull-request reviews, branching strategies, and code-ownership practices Infrastructure-as-Code: Proficiency with Terraform/Packer for platform-agnostic resource provisioning Monitoring & Observability: Experience configuring telemetry (Prometheus, Grafana, ELK/EFK stacks, Splunk) and alerting in automated environments Secret & Credential Management: Familiarity with HashiCorp Vault, Azure Key Vault, AWS Secrets Manager, or equivalent Compliance Automation: Ability to script and integrate compliance checks (OpenSCAP, InSpec, Chef InSpec) into the deployment pipeline Problem-Solving & Incident Response: Comfortable troubleshooting complex, multi-layered failures and participating in on-call rotation for production issues PAY TRANSPARENCY The salary offered will be based on the selected candidate's qualifications - skills, education & experience - and the position level. $131,475.31- $146,359.31 APPLICATION DEADLINE April 27, 2026. THE AURIA TEAM Auria is a provider of solutions and software in support of complex Space, National Security, and Cyber missions of federal, international, and commercial customers. Headquartered in Colorado Springs, CO our success is built on the excellence of diverse teams advancing innovative systems and operational software to strengthen our customers\' missions. With a distinguished track record and a spirit of relentless pursuit, we set the pace for progress and execute every mission with the utmost precision. As a full-time Auria employee, here are some of the many benefits to enjoy: Generous PTO package with yearly tenure increases Flex time provides you with the flexibility needed 6 Company-Paid Holidays + 5 Float days to use when you wish per year Up to 4% match on 401(k) employee contributions, employer and employee contributions immediately vested Up to $5,250 per year on Education and Certification Assistance Low-cost medical plans that include company-sponsored HSA No-cost life insurance Employee Assistance Program (EAP) And much more EEO STATEMENT Auria is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, marital status, national origin, age, veteran status, disability, or any other protected class. #J-18808-Ljbffr