Everforth ECS is seeking an IaC Engineer SME to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax. Please Note: This position is contingent upon contract award.
The War Data Platform (WDP) is a key initiative within the U.S. Department of War's (DoW) AI-First strategy introduced in early 2026. The WDP focuses on operational warfighting data and aims to accelerate the deployment of artificial intelligence (AI) on the battlefield. The WDP extends to Unclassified, Secret, and Top Secret environments, and supports collaboration between Combatant Commands, Joint Staff directorates, Senior Executive Service leaders, and operational analysts.
The IaC Engineer SME is a senior technical lead for infrastructure automation and Infrastructure-as-Code (IaC) engineering within the WDP Core Integration program, responsible for designing, building, and governing the Infrastructure-as-Code frameworks and automated provisioning and configuration management capabilities supporting secure and repeatable platform operations across IL2/NIPRNet, IL5/AWS GovCloud, IL6/AWS Secret Region, and JWICS environments. The role applies Infrastructure-as-Code and configuration management practices to implement scalable, compliant cloud environments aligned to approved system architectures and security requirements. across DoW cloud programs, this role is expected to bring the same discipline and technical rigor to the WDP enterprise at scale.
• Develops enterprise infrastructure solutions using Infrastructure as Code methodologies to support Department of War mission systems, cross-domain cloud environments, and production-grade operational platforms.
• Designs and implements automated cloud architectures using Terraform, Ansible, and CloudFormation to support system administration, deployment automation, cybersecurity controls, and CI/CD pipeline integration across multiple operational enclaves.
• Builds secure configuration baselines aligned with approved system operations plans, asset management standards, and cyber incident response procedures.
• Develops and maintains automation for patch management workflows, backup, recovery, and disaster recovery workflows, and release progression from development through production.
• Collaborates with operational units, cybersecurity elements, and development teams to align automation with mission priorities, continuity of operations requirements, and compliance mandates.
• Leads development of enterprise templates, code repositories, and automated enforcement of security configurations using version control systems such as Git and GitHub.
• Produces architectural diagrams, automation documentation, rollback plans, and deployment artifacts supporting traceability, audit readiness, and Government review.
• Provides technical direction, guides junior personnel, evaluates system performance metrics, and drives continuous improvement of automated cloud operations.
• Contributes to operational readiness by integrating automation into incident response processes and system monitoring workflows, supporting rapid resolution of system degradations, configuration drift, and mission-impacting anomalies.
• Delivers advanced automation capabilities that increase deployment predictability, reduce operational risk, and support efficient operation of Department of War cloud infrastructures.
• Performs other duties as assigned.
• Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
• 12 or more years of progressively responsible experience in cloud infrastructure engineering, DevSecOps automation, or a closely related field, with demonstrated expert-level proficiency designing and managing IaC and Configuration-as-Code frameworks in support of DoW or federal government programs operating across multiple security enclaves.
• Expert hands-on proficiency with Infrastructure-as-Code and configuration management tooling such as Terraform, Ansible, and CloudFormation, including experience supporting secure federal or defense cloud environments and implementing automation aligned to RMF, STIG, and authorization requirements.
• Demonstrated experience integrating IaC automation into CI/CD DevSecOps pipelines, including automated security baseline enforcement, STIG compliance validation, patch lifecycle management, and configuration drift detection across multi-enclave production environments.
• Proven ability to develop and maintain version-controlled enterprise code repositories using Git or GitHub, produce authoritative technical documentation and rollback plans, and lead automation initiatives that support release management, audit readiness, and continuity of operations for DoW mission platforms.
• Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).
Skills Required
- 12 or more years of experience in cloud infrastructure engineering, DevSecOps automation, or related field
- Current Secret security clearance with ability to obtain Top Secret clearance
- Expert proficiency with Terraform, Ansible, and CloudFormation
- Experience integrating IaC automation into CI/CD pipelines
- Ability to develop version-controlled enterprise code repositories using Git or GitHub
ECS Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about ECS and has not been reviewed or approved by ECS.
-
Healthcare Strength — ECS advertises multiple national-network medical plan options with HSA eligibility alongside dental and vision coverage. Coverage generally begins quickly and is paired with company-paid short- and long-term disability, adding stability to the health package.
-
Retirement Support — A 401(k) with Safe Harbor and immediate vesting on employer contributions is emphasized, with an employer match available. Access to an employee stock purchase plan via the parent company provides an additional savings avenue.
-
Parental & Family Support — Paid parental leave up to 30 days, adoption assistance, and other family-oriented leaves are highlighted. Feedback suggests these offerings add meaningful value beyond base pay for many roles.
ECS Insights
What We Do
ECS, a segment of ASGN (NYSE: ASGN), delivers advanced solutions and services in cloud, cybersecurity, artificial intelligence (AI), machine learning (ML), application and IT modernization, and science and engineering. The company solves critical, complex challenges for customers across the U.S. public sector, defense, intelligence and commercial industries. ECS maintains partnerships with leading cloud, cybersecurity, and AI/ML providers and holds specialized certifications in their technologies. Headquartered in Fairfax, Virginia, ECS has more than 3,400 employees throughout the U.S. and has been recognized as a Top Workplace by The Washington Post for the last five years.







