Key skills
PythonAWSTerraformKubernetesAnsibleHelmSAMLPrometheusGrafanaGitLabBitbucket
About this role
LMI is a digital solutions provider focused on accelerating government impact through innovation. The Senior DevSecOps / Platform Engineer will design, deploy, and maintain a Platform-as-a-Service (PaaS) environment, ensuring stability, security, and speed for Navy logistics and asset visibility applications.
Responsibilities:
- Architect, build, and maintain robust GitLab Pipelines for seamless application deployment
- Play a key role in assisting the Platform team with the migration of legacy repositories and workflows from BitBucket to GitLab (IronSled)
- Design, deploy, and manage the infrastructure behind our apps—across AWS GovCloud, edge, and Navy networks using Terraform, Ansible, and GitLab
- Drive containerization efforts for mission-critical applications (NADACS, SPECTR, etc.) and manage Kubernetes
- Develop and maintain Helm Charts for deployments and ensure cluster resilience through automated Kubernetes backups and recovery testing (e.g., Velero)
- Engineer automated processes for RHEL image hardening and execute automated STIG checklists
- Integrate continuous, automated security scanning directly into pipelines to maintain Authority to Operate (ATO) status and support ICAM integration
- Establish comprehensive continuous monitoring, alerting, and reporting mechanisms (e.g., Prometheus/Grafana) across the platform
- Oversee cryptographic lifecycles through rigorous secrets management and automated key rotations
Requirements:
- Active Secret clearance or higher (required)
- Meet DoD 8570/8140 baseline certifications (e.g., CompTIA Security+ CE)
- 5+ years of experience (Mid-to-senior level) functioning as a DevSecOps or Platform Engineer, specifically within DoD, federal, or highly regulated environments
- Significant experience deploying and managing cloud infrastructure using AWS GovCloud and hybrid cloud environments
- Hands-on Kubernetes administration and custom Helm chart development
- Strong background in RHEL system administration and scripting automated system/container hardening
- Advanced proficiency building pipelines natively in GitLab, with experience handling migrations from BitBucket
- An automation-centric approach to eliminate manual toil
- A security-first mindset that treats security as a foundational element
- Knowledge of secure identity and access management (ICAM) protocols (SAML, OAuth2, OIDC)
- Proficiency in at least one language (e.g., Python)
- CKAD or CKA certification
- Master's degree in Computer Science or a related field
- Prior experience with U.S. Navy programs or command and control platforms
- Experience securing or operating IL5+ environments
- AWS Certification (Solutions Architect or Developer Associate)