• Create and maintain environment-specific Kubernetes configuration packages (e.g., Helm values files, YAML manifests) that incorporate STIG-aligned hardening and RBAC policy enforcement per IL environment. • Implement and manage secrets injection strategies using FedRAMP-compliant tools (e.g., AWS Secrets Manager, Azure Key Vault), ensuring compatibility with automated deployment pipelines. • Integrate CI/CD pipelines to enable secure, automated deployment and rollback of ArcGIS components and related services, supporting ongoing agility and compliance across environments. • Coordinate with Kubernetes and Data Layer Engineers to ensure version control, pipeline integrity, and integration testing for all containerized services deployed under WO-003. • Coordinate with the WO-009 infrastructure team to provide estimated cloud resource usage profiles for Kubernetes-based deployments in IL2, IL4, and IL5 environments. • Supply container and workload specifications to the WO-009 infrastructure team to support provisioning, tagging, and prepay or reservation planning Implement resource tagging in alignment with program-wide cloud governance policy and reconcile actual usage against estimates provided by WO-009. • Support cost optimization efforts led by WO-009 by adjusting workloads and scaling strategies in response to performance and utilization feedback.

• Administer and maintain Kubernetes clusters and containerized workloads. • Manage cloud infrastructure across OCI, AWS, GCP, or Azure environments. • Develop and maintain CI/CD pipelines for reliable application deployments. • Implement and manage Infrastructure as Code (IaC) using Terraform and Helm. • Build automation tooling and operational workflows using Python, Go, or Bash. • Drive observability initiatives including monitoring, logging, tracing, and alerting improvements. • Monitor, troubleshoot, and resolve production incidents while participating in on-call rotations. • Support and optimize distributed data platforms including Kafka, Elasticsearch, Spark, Redis, and MongoDB. • Improve platform reliability, scalability, and operational efficiency using SRE best practices. • Collaborate with cross-functional teams across multiple time zones. • Perform Linux system administration and networking troubleshooting. • Contribute to incident response processes, postmortems, and reliability improvements. • Support GitOps and deployment workflows using tools such as ArgoCD and GitHub Actions. • Evaluate and implement AI-assisted operational tooling for auto-remediation, alert correlation, and operational intelligence.

• Design and scale hosting architecture in IL-5 environments with a path to IL-6 • Evaluate and select deployment strategies across government networks, GovCloud, and hybrid platforms • Build a production environment that supports zero-downtime deployments and enterprise-scale growth • Design, build, and operate a modern CI/CD pipeline with integrated testing, security scanning, and compliance validation • Establish and manage development, staging, and production environments • Ensure alignment with DoD requirements (e.g., Iron Bank, STIGs, ACAS/OpenSCAP, FIPS) • Lead transition from incumbent contractor and government-furnished environments • Inventory, assess, and rationalize existing services, dependencies, and infrastructure • Simplify and consolidate architecture into a scalable, maintainable system • Own release cadence from capability intake through production deployment • Ensure deployment quality through monitoring, rollback readiness, and performance metrics (e.g., uptime, failure rates) • Support continuous delivery aligned with government timelines and operational needs • Partner with Platform Security and RMF leadership to align on ATO strategy • Ensure the pipeline generates required artifacts for authorization and continuous compliance • Embed security and compliance into the delivery lifecycle—not as a post-deployment step

• This is a rare opportunity to build a production deployment pipeline for mission-critical DoD software from the ground up. • As the DevSecOps Project Lead, you will own the end-to-end software delivery lifecycle—from code intake through secure, scalable production deployment. • You will design and operate the DevSecOps pipeline, define the hosting architecture, and integrate security and compliance directly into delivery. • This role spans both modern commercial DevOps practices and the realities of DoD deployment (IL-5 today with a path to IL-6), requiring you to make critical decisions across government networks, cloud environments, and hybrid architectures. • This is a senior role combining hands-on execution with system-level ownership. You will build key components directly while guiding the transition from an existing government-furnished environment to a scalable, long-term production system.