DevSecOps Engineer

Position Overview

Vytal Solutions, Inc. is a boutique consultancy based out of McLean, VA. Vytal Solutions provides project management services to small and mid-size professional services organizations, that serve their US federal and state government clients.

Location: Remote, with occasional travel to client site in Baltimore, MD

Client: Centers for Medicare & Medicaid Services (CMS)

Clearance Requirement: Ability to obtain and maintain a Public Trust clearance (required)

We are seeking a DevSecOps Engineer with strong AWS experience to support a program with the Centers for Medicare & Medicaid Services (CMS). This role is ideal for someone who can operate independently in a regulated environment, embed security into cloud engineering practices, and effectively communicate with federal stakeholders and partner leadership.

You will play a key role in planning, executing and supporting the migration of a enterprise solution to the AWS government cloud to ensure a secure, compliant, and scalable cloud solutions that support critical healthcare systems impacting millions of Americans.

Key Responsibilities

• Design, implement, and maintain secure CI/CD pipelines in AWS environments supporting CMS systems
• Integrate security controls and automation into DevOps workflows (DevSecOps)
• Provision and manage infrastructure using Infrastructure as Code (IaC) tools such as Terraform or CloudFormation
• Ensure compliance with CMS security standards, including FISMA and NIST 800-53 controls
• Support Authority to Operate (ATO) processes, including documentation and continuous monitoring
• Perform vulnerability scanning, risk assessments, and remediation activities
• Collaborate with development, security, and operations teams to deliver secure releases
• Interface directly with CMS stakeholders to gather requirements, provide updates, and support audits
• Communicate effectively with partner organizations, including senior leadership

Required Qualifications

• 2–4 years of hands-on experience with AWS (EC2, S3, IAM, Lambda, VPC, CloudWatch, etc.)
• 2–10 years of experience in DevSecOps, DevOps, or related roles
• Experience supporting CMS
• Experience building and maintaining CI/CD pipelines (e.g., Jenkins, GitLab CI, GitHub Actions)
• Familiarity with containerization and orchestration (Docker, Kubernetes/EKS)
• Strong understanding of cloud security principles and best practices
• Experience with Infrastructure as Code (Terraform, CloudFormation)
• Experience with scripting (Python, Bash, or similar)
• Familiarity with federal compliance frameworks (FISMA, NIST 800-53)
• Ability to work independently and manage priorities in a client-facing environment

Preferred Qualifications

• AWS certifications (Solutions Architect, DevOps Engineer, or Security Specialty)
• Experience with FedRAMP-authorized environments
• Familiarity with tools such as Splunk, Tenable, Snyk, or Prisma Cloud
• Prior experience supporting ATO or continuous monitoring programs

We are unable to sponsor a work visa. An individual applying should possess authorization to work in the United States.

Benefits

• Dental insurance
• Flexible schedule
• Health insurance
• Professional development assistance
• Vision insurance

Compensation Package

• Performance bonus
• Yearly pay