• Design, build, and operate the CI/CD systems, release orchestration, and testing infrastructure that every Zapier engineer depends on. • Define and evolve the golden paths for how code gets built, tested, and shipped at Zapier. • Own end-to-end delivery of complex initiatives, from design doc through rollout and impact measurement. • Build internal tooling and APIs that make Zapier engineers more effective and reduce time from merge to production. • Debug complex production issues across pipelines and release systems, participate in incident response, and drive systemic improvements. • Lead technical design discussions and write clear documentation that influences decisions across teams. • Mentor engineers on the team and raise the technical bar through code reviews, design feedback, and knowledge sharing. • Partner with the cloud/infra SRE team on the boundary between platform foundation and the delivery layer on top of it.

Description We are seeking an DevSecOps Engineer to support a federal client by helping integrate security practices into modern cloud and application development workflows. You will work alongside senior DevOps, security, and application teams to support CI/CD pipelines, cloud infrastructure, and automated security controls in alignment with federal standards. Job Location: This is a fully remote role which may require occasional travel to the DC Metro area as needed for onsite client meetings. What You Will Do: - Assist in the development, maintenance, and monitoring of CI/CD pipelines using tools such as GitHub Actions, GitLab CI, Jenkins, or Azure DevOps - Support infrastructure as code (IaC) efforts using tools like Terraform, CloudFormation, or ARM templates - Help integrate security scanning and compliance checks into build and deployment pipelines (SAST, DAST, dependency scanning, container scanning) - Support cloud infrastructure in AWS, Azure, or GCP, with an emphasis on security best practices - Assist with containerization efforts using Docker and orchestration platforms such as Kubernetes - Monitor environments, logs, and alerts; assist with troubleshooting and incident response - Document configurations, processes, and security controls to support audits and compliance requirements - Collaborate with development, operations, and security teams in an Agile/Scrum environment - Learn and apply federal security frameworks such as NIST, FISMA, and FedRAMP What You Will Bring: - Must possess an active high level security clearance (TS). - 2+ years of experience in DevOps, cloud engineering, systems engineering, or cybersecurity. - MUST RESIDE IN THE United States (U.S.) and the work MUST BE PERFORMED in the United States (U.S.), as this work is for a federal contract and laws do apply. - US Citizenship required due to a federal contract requirements. What We Would Like You To Have: - Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related technical field - Basic understanding of CI/CD concepts and DevOps practices - Familiarity with at least one cloud platform (AWS, Azure, or GCP) - Working knowledge of Linux and basic scripting (Bash, Python, or similar) - Exposure to DevSecOps tools (e.g., SonarQube, Snyk, Trivy, Checkov, Aqua, Prisma Cloud) - Experience with Docker and basic Kubernetes concepts - Familiarity with NIST 800-53, FedRAMP, or other federal security standards - Entry-level certifications such as AWS Cloud Practitioner, Azure Fundamentals, Security+, or similar - Experience supporting applications in a regulated or government environment #LI-CC1 #Indeed #dcsa2026 Working at ICF ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy. We will consider for employment qualified applicants with arrest and conviction records. Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email Candidateaccommodation@icf.com and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.  Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in (Benefits) Coverage Act. Candidate AI Usage Policy At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate or assist with responses during interviews (whether in-person or virtual) is not permitted. This policy is in place to maintain the integrity and authenticity of the interview process.  However, we understand that some candidates may require accommodation that involves the use of AI. If such an accommodation is needed, candidates are instructed to contact us in advance at candidateaccommodation@icf.com. We are dedicated to providing the necessary support to ensure that all candidates have an equal opportunity to succeed.   Pay Range - There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position. The pay range for this position based on full-time employment is: $89,649.00 - $152,404.00 Nationwide Remote Office (US99)

Role Overview Alchemy is seeking a qualified Early Practitioner with applied, real-world experience in Fundamentals of DevSecOps to participate in a skills assessment validation engagement. This is a short-term, contract, remote engagement in which the Early Practitioner will complete a practitioner-level skills assessment and a brief post-assessment survey. This role does not involve teaching, instructional design, content creation, or ongoing advisory responsibilities. Engagement Details Engagement Type: Contract / 1099 – Short-term engagement Location: Remote Estimated Item Count: ~75 Estimated Time to Completion: Approximately 1–2 hours Assessment Window: Work must be completed within a defined access window (typically 5 business days once access is granted) Scope of Work Complete a practitioner-level skills assessment used for validation and standard-setting purposes. Complete a short post-assessment survey providing feedback on the assessment experience. This role does not include: • Teaching or facilitation responsibilities • Instructional or curriculum design work • Content authoring or SME review of materials • Ongoing advisory or consulting responsibilities Required Expertise The Early Practitioner should be a current practitioner with applied, real-world experience related to the following knowledge areas and skills: • Explain the core components and methodologies of DevSecOps • Summarize the DevSecOps manifesto and when a DevSecOps approach is appropriate • Compare DevOps and DevSecOps and define DevSecOps roles and responsibilities • Classify milestones within the DevSecOps maturity model • Explain DevSecOps requirements across the OWASP SDLC phases (Plan, Code, Build, Test, Release, Operate) • Apply Security Governance with DevSecOps including compliance as code • Explain and demonstrate how Threat Modeling is implemented as part of DevSecOps • Understand STRIDE methodology and continuous threat modeling approaches • Perform automated vulnerability scans using tools like OWASP ZAP, nikto, and trivy • Integrate automated security testing tools into CI/CD pipelines • Compare static and dynamic code analysis approaches • Use automated git hooks and linters for code quality and security checks • Scan third-party libraries for known vulnerabilities using dependency checking tools • Prevent secrets from being committed to source control • Analyze situations to optimize logging, monitoring, and alerting for security • Define monitoring and alerting response strategies for automated incident response • Use Security Metrics for Continuous Security Improvement Ideal Candidate Profile Active practitioner with hands-on experience in Fundamentals of DevSecOps or closely related domains. Practical, working knowledge of how the concepts listed above are applied in real professional settings. Does not need to be an academic researcher or industry thought leader — applied experience is what matters. Deliverables Completed skills assessment within the defined access window. Completed post-assessment survey. Compensation This is a flat-fee engagement, paid upon successful completion of the assessment and survey.

• Lead the design and implementation of infrastructure and CI/CD pipelines • Mentor a team of DevOps engineers • Design, implement and automate Cloud Infrastructure in Azure & AWS using Infrastructure as Code tools such as Terraform, Ansible and Jenkins • Build and help transform towards container and serverless compute architectures • Build and help maintain CI/CD pipelines and orchestrations across multiple environments • Advise, implement and support the adoption of Cloud Native solutions as appropriate • Ensure the infrastructure, automation, monitoring, and CI/CD solutions are compatible with broader organizational DevOps and Security patterns • Explore new technologies, development patterns, and partake in pilots/POC/technology evaluations • Conduct work activities using SRE principles • Resolve Production Incidents and contribute to root cause analysis