Senior Pipeline Engineer

CO Salary Range: USD 148,850.00 - 269,075.00 per year

Description

Looking for an opportunity to make an impact?

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. The Leidos National Security Sector (NSS) combines technology-enabled services and mission software capabilities in the areas of cyber, logistics, security operations, and decision analytics to support our defense and intel customers' mission to defend against evolving threats around the world.

• Lead the design, implementation, and management of secure CI/CD pipelines that protect mission-critical applications and infrastructure.
• Responsible for embedding security into every phase of the software development lifecycle (SDLC), leveraging cutting-edge DevSecOps practices to ensure that security controls are automated, scalable, and resilient.
• Play a pivotal role in guiding cross-functional teams, enforcing security standards, and driving continuous improvement of the organization's security posture.
• Demonstrate deep expertise in cloud security, secure infrastructure as code (IaC), and the integration of security tools into CI/CD workflows, ensuring that security remains a top priority without compromising agility.
• Responsible for writing and maintaining source code, creating and maintaining software applications and applying frameworks involved in a software release.
• Duties include computer programming, documenting, managing configuration, testing, and bug fixing involved in creating and maintaining applications and frameworks involved in a software release life cycle and resulting in a software product.
• Provide technical advice/input that impact strategic client outputs and Leidos business results.
• Impact functional strategy by developing new solutions, processes, standards or operational plans that position Leidos competitively in the marketplace.
• Serve as a technical lead on large, complex projects. Mentors and coaches other technical staff.
• Define and lead the security strategy for CI/CD pipelines, ensuring alignment with business goals, compliance standards, and industry best practices.
• Mentor and provide technical guidance to junior engineers, promoting a security-first mindset across development and operations teams.
• Act as a subject matter expert (SME) in DevSecOps, advising leadership on emerging threats, vulnerabilities, and mitigation strategies.
• Secure CI/CD Pipeline Development:
• Architect, develop, and optimize CI/CD pipelines with built-in security controls, ensuring seamless integration of automated security tests.
• Implement security gates, vulnerability scanning, and compliance checks within CI/CD workflows to detect and prevent potential threats early.
• Maintain and improve security tooling in the CI/CD environment, ensuring high performance and minimal false positives.
• Champion DevSecOps principles by automating security testing (SAST, DAST, IAST) and compliance checks across the SDLC.
• Develop and maintain custom security scripts and automation tools to monitor, analyze, and respond to security events in real time.
• Integrate secret management solutions, certificate handling, and secure credential management into CI/CD pipelines.
• Lead vulnerability management efforts by proactively identifying, analyzing, and remediating security gaps in application code, containers, and cloud infrastructure.
• Enforce compliance with industry regulations and security frameworks such as NIST, ISO 27001, CIS, PCI-DSS, and SOC 2.
• Collaborate with GRC (Governance, Risk, and Compliance) teams to establish and maintain security policies and audit processes.
• Design and secure cloud-native environments (AWS, Azure, GCP), ensuring best practices in infrastructure as code (IaC) and cloud architecture.
• Automate security configurations and enforce cloud security posture management (CSPM) policies to protect sensitive data.
• Implement container security solutions and harden Kubernetes clusters to prevent unauthorized access and privilege escalation.
• Develop and implement real-time security monitoring, alerting, and logging strategies to detect and mitigate threats.
• Define incident response procedures, ensuring rapid containment, investigation, and resolution of security incidents.
• Partner with Security Operations (SecOps) and Incident Response (IR) teams to automate playbooks and streamline response processes.

• Active Top Secret/SCI (TS/SCI) with Polygraph security clearance required. Must be U.S. Citizen.
• Master's with 15 to 20 years of prior relevant experience or Doctorate with 13 to 16 years of prior relevant experience. Experience may be considered in lieu of a degree.
• Understanding of DoD IT security protocols and requirements
• Proven expertise in designing and securing CI/CD pipelines using tools such as Jenkins, GitLab CI, GitHub Actions, or Azure DevOps.
• Strong knowledge of security frameworks, vulnerability management, and compliance standards (NIST, OWASP, CIS, etc.).
• Extensive experience with infrastructure as code (IaC) tools like Terraform, CloudFormation, and Ansible, with a focus on security best practices.
• Proficiency in scripting and automation using Python, Bash, or similar languages to integrate security controls.
• Deep understanding of container security, Kubernetes hardening, and orchestration best practices.
• Solid knowledge of cloud security principles across AWS, Azure, and/or GCP, with experience in implementing cloud-native security controls.
• Experience in API security, secret management, and secure credential handling in automated pipelines.

• Industry certifications such as AWS Certified Security, Certified Kubernetes Security Specialist (CKS), GIAC Cloud Security Automation (GCSA), CISSP, CEH, or equivalent security certifications
• Experience with security information and event management (SIEM) tools and threat intelligence platforms.
• Expertise in integrating security with GitOps workflows and managing secure delivery pipelines.
• Familiarity with security orchestration, automation, and response (SOAR) tools.