The Role
Senior DevSecOps Engineer
Job ID#: 25-3043
Location: Herndon, VA
Who We Are:
Since our inception back in 2006, Navitas has grown to be an industry leader in the digital transformation space, and we’ve served as trusted advisors supporting our client base within the commercial, federal, and state and local markets.
What We Do:
At our very core, we’re a group of problem solvers providing our award-winning technology solutions to drive digital acceleration for our customers! With proven solutions, award-winning technologies, and a team of expert problem solvers, Navitas has consistently empowered customers to use technology as a competitive advantage and deliver cutting-edge transformative solutions.
What You’ll Do:
Navitas is seeking a Senior DevSecOps Engineer with deep expertise in Azure, .NET Core, Angular, and microservices architecture. In this pivotal role, you will lead the integration of security throughout the development lifecycle—enabling secure software delivery through automation, cloud-native controls, and proactive risk mitigation strategies. You’ll be part of a multidisciplinary team that builds resilient, secure, and scalable solutions in a fast-paced environment serving mission-critical applications.
Responsibilities will include but are not limited to:
Job ID#: 25-3043
Location: Herndon, VA
Who We Are:
Since our inception back in 2006, Navitas has grown to be an industry leader in the digital transformation space, and we’ve served as trusted advisors supporting our client base within the commercial, federal, and state and local markets.
What We Do:
At our very core, we’re a group of problem solvers providing our award-winning technology solutions to drive digital acceleration for our customers! With proven solutions, award-winning technologies, and a team of expert problem solvers, Navitas has consistently empowered customers to use technology as a competitive advantage and deliver cutting-edge transformative solutions.
What You’ll Do:
Navitas is seeking a Senior DevSecOps Engineer with deep expertise in Azure, .NET Core, Angular, and microservices architecture. In this pivotal role, you will lead the integration of security throughout the development lifecycle—enabling secure software delivery through automation, cloud-native controls, and proactive risk mitigation strategies. You’ll be part of a multidisciplinary team that builds resilient, secure, and scalable solutions in a fast-paced environment serving mission-critical applications.
Responsibilities will include but are not limited to:
- Design, implement, and secure CI/CD pipelines using Azure DevOps, GitHub Actions, or similar tools.
- Integrate security testing tools (SAST, DAST, SCA, container scanning) into build and release processes.
- Automate compliance validation, secrets management, and vulnerability mitigation workflows.
- Collaborate with development teams to enforce secure coding best practices in .NET Core, Angular, and microservices deployments.
- Implement Infrastructure-as-Code (IaC) security controls using Terraform, Bicep, or ARM templates.
- Apply Azure-native security controls (NSGs, Defender for Cloud, Azure Policy, RBAC).
- Secure containerized workloads in Azure Kubernetes Service (AKS) or Azure Container Apps.
- Harden APIs and ingress points using WAFs, Azure API Management, and Cloudflare.
- Integrate telemetry into Microsoft Sentinel, Azure Monitor, or Splunk for security visibility.
- Create security dashboards to track KPIs and monitor vulnerabilities.
- Support security incident detection, investigation, response, and forensic activities.
- Conduct threat modeling, architecture reviews, and security assessments.
- Define security guardrails and reusable templates for development and deployment.
- Champion secure SDLC principles and deliver security awareness training to DevOps and development teams.
- 5+ years of experience in .NET Core, C#, Angular (v12+), and microservices development.
- Deep understanding of CI/CD, application security (OWASP Top 10, API security), and container security.
- Hands-on with tools such as SonarQube, Checkmarx, Aqua, Trivy, Snyk, or equivalents.
- Proficiency in managing Azure-native services (App Services, Key Vault, Azure Front Door, etc.).
- Expertise in Terraform, Bicep, or ARM templates for infrastructure automation.
- Experience with Policy-as-Code (OPA/Conftest) and Kubernetes security constructs.
- Familiar with Helm charts and K8s networking policies.
- Certifications: Azure DevOps (AZ-400), Azure Security (AZ-500), or Microsoft Cybersecurity Architect (SC-100).
- Experience implementing Zero Trust Architecture and identity-based security.
- Hands-on with edge security and integration using Cloudflare and API Gateway platforms.
Similar Jobs
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
Incorporated in 2006, Navitas Business Consulting Inc, is a Woman-Owned, Small Business (WOSB) with areas of expertise in Cloud Migration, Data & Insights, Artificial Intelligence, Threat Intelligence, Cybersecurity, Agile PMO & Advisory and Healthcare. Specializing in Federal, Commercial, and State & Local customers. We are proud to be recognized as the “Top Places to Work” by Washington Post from 2018-2022, and 2024!
