Key skills
PythonBashPowerShellReactVueNode.jsAWSAzureDockerJenkinsGitHub ActionsGitLab CIOracleGitGitHubGitLabVersion ControlAgileCI/CDCommunicationCollaborationZero Trust
About this role
Concept Plus is a mission-focused technology solutions provider that transforms IT concepts into impactful solutions for federal agencies. They are seeking a Junior DevSecOps Engineer to support a client program involving enterprise-scale applications in secure environments, focusing on CI/CD processes, automation, and secure development practices.
Responsibilities:
- Support the maintenance and enhancement of secure CI/CD pipelines used for automated builds, testing, scanning, packaging, and deployments
- Assist in configuring and running automated security scans including SAST, DAST, and SCA
- Contribute to the integration of frontend and backend components into the DevSecOps pipeline (e.g., Node.js, Python, React/Vue builds)
- Assist with container image validation, dependency scanning, and hardening tasks
- Support log aggregation, build monitoring, and alerting workflows for pipeline health
- Assist with cloud environment configuration, deployment validation, and infrastructure troubleshooting under senior engineer supervision
- Learn Cloud One platform fundamentals and participate in environment provisioning tasks
- Support Continuous Monitoring (ConMon) activities including event logging and resource status reporting
- Learn and apply secure coding principles, vulnerability remediation workflows, and DoD cybersecurity best practices
- Assist in documentation and technical support required for Authority to Operate (ATO) activities
- Help enforce least-privilege access, secret scanning, and environment hardening tasks aligned with Zero Trust architecture
- Assist in writing and updating scripts (Python, Node.js, Bash, or PowerShell) used for deployments, system checks, and environment automation tasks
- Support configuration management activities and maintain environment documentation, checklists, and SOPs
- Contribute to troubleshooting infrastructure issues in collaboration with cloud and security engineers
- Participate in Agile ceremonies: sprint planning, standups, backlog refinement, reviews, and retrospectives
- Collaborate with senior DevSecOps engineers, backend teams, UI developers, and government stakeholders across a multi-contractor environment
- Support Tier 1–2 troubleshooting for pipeline issues, deployment errors, or environment inconsistencies
- Adhere to MOSA aligned DevSecOps practices and contribute to continuous improvement efforts
Requirements:
- US Citizen
- Ability to obtain and/or maintain a government clearance
- 1–3 years of experience in DevOps, DevSecOps, cloud engineering, or software automation roles
- Bachelors Degree
- Foundational knowledge of CI/CD pipelines (GitLab CI, GitHub Actions, Jenkins, or similar)
- Familiarity with Git version control and collaborative branching/PR workflows
- Understanding of secure coding practices and desire to learn DoD aligned security requirements
- Hands-on experience with scripting languages such as Python, Node.js, Bash, or PowerShell
- Basic understanding of container technologies (Docker) and package management workflows
- Strong communication skills and willingness to learn from senior engineers
- Ability to troubleshoot issues, research solutions, and contribute in a fast-paced Agile environment
- Exposure to cloud platforms such as Cloud One, AWS GovCloud, Azure Government, or Oracle Cloud
- Familiarity with SAST/DAST/SCA tools or security scanning concepts
- Experience supporting CI/CD pipelines for full-stack applications (React/Vue, Node.js, Python)
- Understanding of microservices, container orchestration, or Infrastructure-as-Code (IaC) concepts
- Experience supporting or building PWAs, Electron apps, or DDIL-oriented systems is a plus
- Familiarity with DHA/JOMIS systems (OMDS, MedCOP, MHS GENESIS)
- Contributions to open-source DevOps tooling or a public portfolio (GitHub, GitLab)