DevOps Engineer

Job Description -

NATO DEVSECOPS ENGINEER

Location: NATO HQ Norfolk VA USA (On-site)

Positions Available: 1 (One)

Period of Performance: We are seeking immediate applicants. Start date is anticipated in December 2026

Position Overview
We are seeking a highly skilled DevSecOps Engineer to join our on site team in Norfolk VA supporting mission-critical system delivery for NATO. This individual will support secure scalable cloud-ready infrastructure and deployment capabilities using modern DevSecOps automation and SRE best practices.

Responsibilities

1. Deploy and operate containerized services using orchestration frameworks to ensure scalability and resilience.

2. Automate infrastructure through Infrastructure as Code (IaC) to provide consistent and repeatable environments.

3. Deploy and monitor workloads in cloud environments (AWS Azure Google Cloud VMware OpenStack).

4. Implement site reliability engineering (SRE) and observability practices to ensure resilience monitoring logging metrics and distributed tracing.

5. Support high-throughput and service-oriented architectures ensuring resilient and scalable deployments.

6. Deliver incremental capabilities in Agile and DevSecOps environments following frameworks such as Scrum SAFe or Kanban.

7. Design and manage secure networking and service meshes (TLS Istio Linkerd API gateways) to ensure encrypted and reliable service-to-service communication.

8. Apply zero-trust principles and compliance automation to enforce security policies and validate system compliance.

9. Manage identity and access using secure methods for secrets tokens certificates and least privilege access control.

Essential Qualifications

1. Minimum 4 years of experience with containerization and orchestration (Docker Kubernetes OpenShift).

2. Minimum 4 years of experience in designing and maintaining CI/CD pipelines with automated testing and security validation.

3. Experience with Infrastructure as Code (Terraform Ansible Helm Pulumi).

4. Experience deploying and securing workloads in hybrid/public cloud environments (AWS Azure Google Cloud VMware OpenStack).

5. Experience implementing site reliability engineering and observability practices (Prometheus Grafana ELK/Loki OpenTelemetry).

6. Experience implementing scalable resilient high-throughput systems and service-oriented architecture.

7. Experience delivering capabilities in Agile/DevSecOps environments (Scrum SAFe Kanban).

8. Experience designing and managing secure networking and service mesh (TLS Istio Linkerd API gateways).

9. Experience applying zero-trust principles and compliance automation (OPA Kyverno SBOM CIS benchmarks).

10. Experience managing secrets and access policies using modern IAM solutions (Vault AWS KMS Azure Key Vault RBAC/ABAC).

11. Fluent in English (oral and written).