Tier One Technologies is seeking a DevSecOps Architect to design and build a robust, self-healing DevSecOps ecosystem that balances rapid deployment with uncompromising security standards. The role focuses on leveraging Artificial Intelligence to automate threat detection, enhance code reviews, and secure AI-native applications for our direct U.S. Government client.
This remote contract-to-hire position will be originated in Falls Church, VA.
SELECTED CANDIDATES WITHOUT REQUIRED CLEARANCE WILL BE SUBJECT TO A FEDERAL GOVERNMENT BACKGROUND INVESTIGATION TO RECEIVE IT.
Responsibilities
Lead the evolution of the software delivery lifecycle by embedding security into every stage of the CI/CD pipeline.
AI-Enhanced Pipeline Security: Architect and maintain automated CI/CD pipelines that utilize AI/ML models for static and dynamic analysis (SAST/DAST) to identify complex vulnerabilities that traditional rule-based tools miss.
Securing AI Workflows: Design security frameworks for the end-to-end AI lifecycle, including securing data ingestion, protecting model weights, and implementing "Guardrail" architectures for Large Language Models (LLMs).
Intelligent Automation: Develop AI-driven orchestration (SOAR) to automate the triage and remediation of security findings, reducing manual overhead for engineering teams.
Policy as Code (PaC): Implement enterprise-wide governance using tools like Open Policy Agent (OPA) to enforce security compliance automatically across multi-cloud environments.
Threat Modeling & Red Teaming: Conduct advanced threat modeling for cloud-native applications, specifically accounting for AI-specific attack vectors like model inversion or data poisoning.
Developer Empowerment: Create self-service security tools and "Golden Paths" that allow developers to deploy securely without friction, fostering a proactive security culture.
Shift Left: Achieve 90% automated security coverage across all production-bound code.
Mean Time to Remediate (MTTR): Utilize AI to reduce vulnerability remediation time by 40% within the first year.
Innovation: Stay at the forefront of the "AI for Security" and "Security for AI" movements
Qualifications
A degree from an accredited College/University in the applicable field of services is required. If the degree is not in the applicable field, then four additional years of related experience is required.
10+ years of overall IT experience, with 5+ years dedicated to DevSecOps leadership in high-scale environments.
AI expertise: Proven track record of implementing AI/ML to solve operational or security challenges.
DevOps & Infrastructure requirements: Expert-level experience with Kubernetes, Terraform/Pulumi, and cloud platforms (AWS, Azure, or GCP).
Security Tooling requirements: Mastery of integrating SAST, DAST, SCA, and Secret Scanning into GitHub Actions, GitLab CI, or Jenkins.
AI/ML Security requirements: Hands-on experience securing MLOps pipelines and implementing security for AI-integrated APIs.
Programming requirements: Proficiency in Python, Go, or Bash for building custom security automation and AI-driven scripts.
Observability requirements: Deep knowledge of eBPF, Prometheus, and AI-powered logging/monitoring tools (e.g., Dynatrace or Datadog).
Strong ability to bridge the gap between "Speed of DevOps" and "Rigors of Security" while communicating clearly with executive leadership.
Excellent communication skills.
Be able to pass a drug screening, criminal history, and credit checks.
Must be a US Citizen or have permanent residence status (Green Card).
Must be able to obtain a Position of Public Trust Clearance.
Must have lived in the United States for the past 5 years.
Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)
