Role Description The DevSecOps Engineer, Senior provides engineering leadership to design and operate secure, automated delivery pipelines for cloud‑hosted and on‑premises applications. This role builds and maintains CI/CD workflows, infrastructure‑as‑code patterns, and integrated security controls that embed testing, scanning, and policy enforcement throughout the software lifecycle. The position partners closely with development, security, and operations teams to standardize toolchains and environments that support an “as‑a‑Service” delivery model, continuously refining automation, observability, and resilience practices to improve speed, quality, and compliance for mission‑critical services. - Design, implement, and maintain CI/CD pipelines that automate build, test, security scanning, and deployment activities across multiple environments. - Develop and manage infrastructure‑as‑code templates and configuration‑management scripts to provision cloud and on‑premises environments in a consistent, repeatable manner. - Integrate security tooling and practices—such as static and dynamic application security testing, dependency scanning, and policy‑as‑code—directly into DevOps workflows. - Collaborate with development and platform teams to standardize containerization, orchestration, and environment configurations that support microservices and modern application architectures. - Implement automation and monitoring for platform health, observability, and incident response, using metrics and logs to drive reliability and performance improvements. - Support auto‑provisioning of infrastructure hardware, storage, and networks as part of an “as‑a‑Service” model, aligning solutions with cost, scalability, and operational objectives. - Define and document DevSecOps standards, patterns, and best practices, mentoring engineers on Agile and DevSecOps methodologies and toolchains. - Partner with stakeholders to evaluate new DevSecOps capabilities, assess risks, and recommend changes to improve pipeline security, resiliency, and compliance. Qualifications - Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent relevant work experience. - 8+ years of experience in DevSecOps, DevOps, cloud, or platform engineering roles with significant hands‑on work implementing automated pipelines and “as‑a‑Service” delivery models. - Strong understanding of infrastructure components, cloud capabilities, and software‑defined practices, including auto‑provisioning and configuration management. - Proven proficiency with Agile and DevSecOps methodologies and common automation tools used to build, test, secure, and deploy applications in cloud and on‑premises environments. - Demonstrated problem‑solving, troubleshooting, communication, and interpersonal skills, with the ability to work effectively across development, security, and operations teams. - Ability to obtain and maintain a Public Trust investigation and U.S. citizenship as required for this remote federal IT role. Preferred Qualifications - Experience with Kubernetes‑based platforms and service meshes used to host microservices in production environments. - Cloud‑provider DevOps or security certification such as AWS Certified DevOps Engineer or equivalent vendor credential. - Background supporting federal or other highly regulated environments, including familiarity with SLAs, compliance expectations, and documentation standards. - Experience mentoring other engineers in DevSecOps practices, including infrastructure‑as‑code, continuous integration and delivery, and architecture reviews. Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. - All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. - All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.

Role Description The DevSecOps Engineer, Junior supports the design, security, and automation of delivery pipelines and infrastructure that underpin mission‑critical applications. The role contributes to CI/CD workflows that integrate build, test, and security controls so deployments to cloud and on‑premises environments are consistent and repeatable. Working with more senior engineers, this position helps implement infrastructure‑as‑code patterns and observability practices that improve resilience, performance, and compliance while partnering with development, cloud, and security teams to standardize DevSecOps toolchains. - Assist with the design and implementation of CI/CD pipelines that automate build, test, security scanning, and deployment activities for mission‑critical systems. - Develop and maintain infrastructure‑as‑code templates and automation to provision and configure cloud and on‑premises environments in a consistent manner. - Integrate security baselines, policy checks, and monitoring capabilities into pipelines to enforce DevSecOps practices across environments. - Collaborate with application, cloud, and security teams to select and standardize DevSecOps toolchains that support an “as‑a‑Service” delivery model. - Support auto‑provisioning of infrastructure components, including compute, storage, and networks, leveraging automation tools and software‑defined practices. - Troubleshoot build, deployment, and environment issues, documenting root causes and contributing to continuous improvement of pipelines and platform reliability. - Create and maintain documentation for pipeline configurations, infrastructure patterns, and DevSecOps procedures to support knowledge sharing and onboarding. Qualifications - Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent relevant work experience. - 0–3 years of experience in DevSecOps, DevOps, cloud, or platform engineering roles, or in closely related software/system engineering positions. - Fundamental understanding of infrastructure components, cloud capabilities, and software‑defined practices, including exposure to automation and configuration management tools. - Familiarity with Agile and DevSecOps methodologies and CI/CD tooling used to design and deliver scalable, cost‑effective solutions in an “as‑a‑Service” model. - Strong analytical, problem‑solving, troubleshooting, and communication skills with the ability to work effectively as part of cross‑functional teams. - Ability to obtain and maintain a Public Trust investigation and U.S. citizenship as required for this remote federal IT position. Requirements - Experience contributing to DevSecOps enablement for teams, including assisting with pipeline standards, secure‑coding practices, or toolchain onboarding. - Associate‑level DevOps or cloud‑security certification from a major cloud provider, with professional‑level certification considered a plus. - Hands‑on experience supporting enterprise cloud infrastructure, including identity and access management, security groups, and cloud‑native services. - Exposure to scripting and automation in cloud environments, such as using command‑line tools to support provisioning, monitoring, or troubleshooting. Benefits - Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. - The compensation displayed for this role is a general guideline based on these factors and is unique to each role. - Monetary compensation is one component of ASM's overall compensation and benefits package for employees.

• Design and implement scalable, secure, and innovative endpoint management architectures leveraging Unicon's eLux, a lightweight, Linux-based operating system, and Scout, a robust endpoint management solution, to ensure secure, efficient, and centrally managed digital workspaces. • Drive the development of key features, optimizations, and integrations that enhance endpoint security, centralized management, and performance, ensuring seamless integration of eLux and Scout within Citrix’s platform. • Advocate for strategies that drive IT process efficiencies in endpoint security, remote device management, and operating system standardization, leveraging the capabilities of eLux and Scout as part of the broader Citrix platform with VDI/DaaS and Web Apps, reinforcing the vision of a secure and scalable digital workspace. • Work closely with customers to develop and validate proof of concepts (PoCs) that demonstrate the effectiveness of eLux and Scout in real-world endpoint security, cloud management, and digital workspace scenarios. • Participate in advancing the technical product roadmap of Unicon's eLux and Scout. Foster a positive culture of collaboration and learning, guiding teams in the effective deployment and use of eLux and Scout within Citrix’s secure digital workspace ecosystem. • Work with Product Managers, Sales, and other cross-functional teams to prioritize and deliver impactful endpoint management solutions that emphasize security, efficiency, and innovation, utilizing Unicon's offerings. • Leverage experience and customer interactions to promote best practices in endpoint security, IT automation, and cloud-based device management as part of the Citrix platform with VDI/DaaS and Web Apps, supporting the goals of a secure and efficient IT infrastructure with eLux and Scout. • Understand customer and partner needs to ensure our solutions align with the vision of a modern and secure digital workspace, effectively integrating eLux and Scout. • Collaborate with customers to ensure successful deployment, configuration, and lifecycle management of eLux-based devices, providing technical support and guidance to drive customer success and satisfaction.

• Design and implement scalable, secure, and innovative endpoint management architectures leveraging Unicon's eLux and Scout • Drive the development of key features, optimizations, and integrations that enhance endpoint security • Advocate for strategies that drive IT process efficiencies in endpoint security, remote device management, and operating system standardization • Work closely with customers to develop and validate proof of concepts (PoCs) • Participate in advancing the technical product roadmap of Unicon's eLux and Scout • Foster a positive culture of collaboration and learning, guiding teams in effective deployment • Collaborate with Product Managers, Sales, and other teams to prioritize and deliver impactful solutions • Leverage experience to promote best practices in endpoint security • Collaborate with customers to ensure lifecycle management of eLux-based devices