Principal DeveloperSecOps Engineer

Summary

Join Second Front Systems (2F) as a Principal DevSecOps Engineer and play a pivotal role in shaping the future of software delivery and security in the defense sector. You will architect and implement secure cloud infrastructure, support operations across various environments, build CI/CD pipelines, integrate security tooling, and develop microservices in Go. Collaborate with government partners and stakeholders, contribute to R&D efforts, and mentor team members. This position requires U.S. citizenship and significant experience in DevSecOps and cloud-native platforms. You will work in a fast-paced Agile environment, contributing to the deployment and scaling of the Game Warden platform, a leading tool for secure SaaS adoption in the U.S. government.

Requirements

• 8+ years of relevant experience in DevSecOps, systems engineering, or infrastructure software development
• Architect-level expertise in designing and operating cloud-native platforms using AWS, Azure, or GCP
• Deep experience with Kubernetes, Docker, and cloud-native application orchestration
• Strong proficiency in Golang or similar languages (e.g., Rust), particularly with infrastructure as code (Pulumi preferred.)
• Familiarity with compliance frameworks such as FedRAMP, DoD SRG, NIST 800-53, and the RMF/ATO process
• Proven experience deploying systems in air-gapped or classified environments
• Experience building and maintaining secure CI/CD pipelines and integrating security throughout the SDLC
• Hands-on experience designing, implementing, or managing SIEM, monitoring, and alerting systems
• Understanding of REST APIs, authentication flows, event-driven architecture, and microservice patterns
• Excellent written and verbal communication skills, with strong documentation habits
• Comfortable working independently and in distributed teams, managing competing priorities across complex projects

Responsibilities

• Architect and implement scalable, secure cloud infrastructure using Kubernetes and Pulumi (Go-based), ensuring compliance with DoD and IC requirements
• Support the security and operations of the 2F Suite across air-gapped and classified environments, working directly with government partners and security teams
• Build and manage CI/CD pipelines integrating DevSecOps best practices from development through deployment
• Integrate and maintain SIEM and security tooling, ensuring observability and compliance across all deployed systems
• Design, develop, and debug microservices in Go (Golang), focusing on performance, security, and modularity
• Work cross-functionally to assess infrastructure needs, prioritize development, and deliver on product roadmap milestones in a fast-paced Agile environment
• Document your work thoroughly—from infrastructure to internal procedures—to ensure secure, repeatable, and auditable deployments
• Collaborate directly with DoD/IC stakeholders to provision secure cloud resources and meet deployment criteria in classified settings
• Contribute to R&D and experimentation efforts needed to advance platform and capabilities in secure and disconnected environments
• Act as a mentor and thought leader, helping to shape internal DevSecOps strategy and infrastructure standards

Preferred Qualifications

• Certified AWS or Azure Solutions Architect
• Experience working in early-stage or high-growth startup environments
• DoD 8570/8140 compliant IAT2 (or willingness to obtain compliance within 3 months of hire)
• Familiarity with GitLab, Google Workspace, and Slack
• Strong interest in U.S. national security and mission-driven innovation
• Expertise in control frameworks such as NIST RMF and FedRAMP

Benefits

• 100% Healthcare, vision, and dental coverage
• 401(k) + 3% company contribution
• Wellness perks (Fitness classes, mental health resources)
• Equity incentive plan
• Tech + office supplies stipend
• Annual professional development stipend
• Flexible paid time off + federal holidays off
• Parental leave
• Work from anywhere