This position is contingent upon contract award.

Candidates must have an active Secret clearance and verify, before applying, that you meet the minimum requirements of the position.

DevSecOps Specialist

Location: Indianapolis, IN; Bratenhal, OH; or Columbus, OH
Clearance Required: Secret (Tier 5 / IT-I)
Work Schedule: Full-time, core business hours with flexibility for after-hours deployments and incident support

Position Summary

The DevSecOps Specialist serves as the bridge between development, security, and operations within the DFAS DRAS-M IL-5 Cloud Tenant. This role is responsible for designing, implementing, and maintaining secure software development pipelines and ensuring that cybersecurity is fully integrated into every stage of the software lifecycle.

The DevSecOps Specialist will automate and streamline system build, test, and deployment processes across DFAS financial applications while embedding advanced security controls into Continuous Integration/Continuous Delivery (CI/CD) workflows. By integrating modern DevSecOps practices, this role ensures faster delivery of secure, resilient mission capabilities in compliance with DoD RMF and DFAS cybersecurity policies.

This position is ideal for candidates with a strong background in automation, cloud-native development, and secure coding practices who want to contribute to the modernization of financial management systems for the Department of Defense.

Responsibilities

• Design, implement, and maintain secure CI/CD pipelines for DFAS financial systems using tools such as GitLab, Jenkins, and Azure DevOps.
• Integrate automated security testing tools (SAST, DAST, dependency scanning) into CI/CD pipelines to detect and remediate vulnerabilities early in the lifecycle.
• Collaborate with developers, system administrators, and cybersecurity teams to ensure that secure coding, compliance, and operational best practices are embedded in the software development lifecycle (SDLC).
• Develop Infrastructure as Code (IaC) templates using Terraform, Ansible, or similar tools to automate provisioning of secure environments.
• Ensure compliance with DoD RMF, IL-5 security requirements, and DFAS cybersecurity standards across all builds and deployments.
• Implement container security scanning and orchestration security controls within Docker, Kubernetes, or OpenShift environments.
• Monitor, analyze, and remediate security findings from code scans, vulnerability assessments, and penetration tests.
• Provide technical guidance on integrating Zero Trust principles into DevSecOps practices.
• Document DevSecOps workflows, standard operating procedures, and compliance artifacts.
• Support developers and testers by enabling secure sandbox environments within IL-5 cloud tenant networks.
• Stay current on DevSecOps tools, automation frameworks, and cybersecurity trends to continuously improve DFAS development pipelines.

Required Qualifications

• Bachelor’s degree in Computer Science, Software Engineering, Cybersecurity, or a related discipline.
• Minimum of 3 years’ experience in DevSecOps, software engineering, or secure automation within DoD or IL-5+ environments.
• Hands-on experience with CI/CD tools such as GitLab CI, Jenkins, or Azure DevOps.
• Strong knowledge of Infrastructure as Code (IaC) and automation tools (Terraform, Ansible, Puppet, or Chef).
• Experience embedding automated security testing into development workflows (SAST, DAST, container scanning).
• Familiarity with containerized environments and orchestration platforms (Docker, Kubernetes, OpenShift).
• DoD 8570 IAT Level II certification required (e.g., CCNA-Security, CySA+, CND, Security+ CE).
• Strong understanding of DoD STIGs, RMF, and NIST 800-53 security control frameworks.
• Excellent problem-solving and collaboration skills, with the ability to work across multidisciplinary teams.

Preferred Qualifications

• Master’s degree in Cybersecurity, Software Engineering, or Cloud Architecture.
• Industry certifications such as Certified Kubernetes Administrator (CKA), AWS Certified DevOps Engineer, Microsoft Certified DevOps Engineer Expert, or GIAC Cloud Security Automation (GCSA).
• Prior DFAS, DISA, or DoD financial systems DevSecOps experience.
• Experience integrating vulnerability management tools such as ACAS, Tenable, or SonarQube into CI/CD pipelines.
• Knowledge of advanced Zero Trust security implementations within DevSecOps workflows.
• Familiarity with Agile/Scrum methodologies and experience working in scaled agile environments.

JANUS strives to provide opportunities for career growth through training and development. We also offer an attractive comprehensive benefit package to include health and welfare plans and financial products. As part of a total rewards program, employees can benefit from our referral bonus program, and other various employee awards. JANUS Research Group takes pride in our benefit package and rewards program which has earned us the certification of a Great Place to Work™

JANUS Research Group provides reasonable accommodation so that qualified applicants with a disability may participate in the selection process. Please advise us of any accommodations you request to express interest in a position by e-mailing: Judy Pagac, Chief Human Resources Officer at judy.pagac@janusresearch.com or calling (706) 364-9100. Please state your request for assistance in your message. Only reasonable accommodation requests related to applying for a specific position within JANUS Research Group will be reviewed at the e-mail address and phone number supplied. Thank you for considering a career with JANUS Research Group.

JANUS Research Group participates in the Electronic Employment Verification Program. Please click the E-Verify link below for more information.

E-Verify

JANUS Research Group is an equal opportunity/ affirmative action employer. It is company policy to provide equal opportunity in all areas of employment practice without regard to race, color, religion, sex, sexual orientation, national origin, age, marital status, veteran status, citizenship, or disability.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment qualified individuals without regard to race, color, religion, sex, national origin, protected veteran status or disability.