BA

Basecamp Consulting & Solutions LLC

DevSecOps Engineer

Job summary

Washington
Software Developer

Work model

Hybrid
2 days ago
Job description

Benefits

  • 401(k) matching
  • Bonus based on performance
  • Competitive salary
  • Dental insurance
  • Health insurance
  • Paid time off
  • Parental leave
  • Training & development
  • Vision insurance

Organizational Background

Established in August 2016, Basecamp Consulting and Solutions is a dynamic Information Technology (IT) consulting firm committed to delivering results for our clients. Specializing in next-generation IT and digital transformation solutions, Basecamp Consulting and Solutions is dedicated to helping clients achieve success through trust, innovation, quality work, and a steadfast commitment to results.

At Basecamp, we believe in the power of emerging technologies to propel our clients toward their goals. Our focus lies in business and IT modernization, utilizing Cloud solutions, cybersecurity, and cutting-edge application development. We pride ourselves on a team of talented professionals who are passionate about supporting our clients on their journey towards innovative outcomes.

Basecamp Consulting and Solutions is dedicated to pushing the boundaries of IT consulting and we are equally committed to embodying these principles in every facet of our work.

Position Overview

Reporting to the Program Manager, the DevSecOps Engineer augments CBO engineering team to extend infrastructure automation and secure delivery in a hybrid cloud environment. Maintains/extends Terraform & OpenTofu IaC (modular configs, remote state); develops Ansible playbooks/roles (CaC, patching, compliance); builds GitHub Actions CI/CD with security gates (SAST, dependency/secrets scanning, policy-as-code); manages Docker image hardening and Kubernetes/Helm orchestration with vulnerability scanning; integrates Shift-Left security and CIS/CBO baselines. Inherits existing patterns (no design-from-scratch); works within CBO change advisory, version control, peer review.

Required Qualifications

  • Ability to obtain a Federal Security Clearance
  • Terraform & OpenTofu (modules, remote state, workspaces);
  • Ansible (playbooks/roles, dynamic inventories, Vault);
  • GitHub Actions (reusable workflows, matrix builds, security gates);
  • Docker authoring/hardening, Kubernetes manifests/Helm, container scanning (Trivy, Grype, or equiv.);
  • SAST (Semgrep, Checkov, tfsec), secrets scanning (Gitleaks, Detect-Secrets), policy-as-code (OPA/Rego);
  • Git workflows (branching, PR review, protected branches).
  • Preferred: Federal/regulated experience; NIST 800-53/FISMA/FedRAMP familiarity; AWS; HashiCorp Vault; Python & Bash.
  • Compliance: NIST 800-53 Rev 5, 800-171, 800-207, FISMA.

Flexible work from home options available.