Senior CI/CD & Integration Engineer - Point Mugu

Job DescriptionJob DescriptionJob SummaryF3EA is seeking a Senior CI/CD & Integration Engineer to support the Blue Water Instrumentation (BWI) RDT&E Tranche 1 Development and Knowledge Management team at the Point Mugu Sea Range. This role is responsible for designing, building, and maintaining DevSecOps pipelines, automated build/test/deploy workflows, and cross-environment integration solutions spanning CMMC-compliant MS365 GCC High, Azure Government (AzureGov), NMCI, and FlankSpeed environments.

The Senior CI/CD & Integration Engineer will establish and operate the automated infrastructure that enables rapid, secure, and repeatable software delivery for AIDI applications, C2 experimentation tools, knowledge management platforms, and business process automation solutions. This role bridges development and operations across multiple DoD enclave boundaries, ensuring that code, configurations, and artifacts flow securely from development through test to deployment in IL4/IL5/IL6 environments while maintaining CMMC, RMF, and STIG compliance at every stage.

This position requires deep expertise in Azure DevOps within GCC High, Infrastructure as Code (IaC), container orchestration, and the unique constraints of building and deploying software across air-gapped or boundary-controlled DoD networks.

Roles and ResponsibilitiesDesign, implement, and maintain CI/CD pipelines in Azure DevOps (GCC High) for all team-developed applications, including AIDI tools, C2 experimentation software, knowledge management solutions, and Power Platform componentsArchitect and operate DevSecOps infrastructure including automated build, static/dynamic code analysis (SAST/DAST), container image scanning, unit/integration testing, and deployment automation across AzureGov IL4/IL5/IL6 environmentsEngineer secure integration pathways and data flows between MS365 GCC High, AzureGov, NMCI, FlankSpeed, and Government range networks, ensuring compliance with boundary protection controls and cross-domain requirementsImplement and manage Infrastructure as Code (IaC) using Terraform, Bicep, or ARM templates for repeatable provisioning of AzureGov resources, including compute, networking, storage, and security configurationsBuild and maintain container orchestration infrastructure (Azure Kubernetes Service / AKS on AzureGov, Docker) for microservices deployment, model serving, and application hostingEstablish and enforce branch strategies, code review workflows, artifact versioning, and release management processes aligned with R&D configuration management requirements (CDRL A006)Automate STIG compliance checking and hardening within CI/CD pipelines, ensuring that deployed infrastructure and applications meet DISA STIG baselines before promotion to test/production environmentsIntegrate automated vulnerability scanning (container images, dependencies, IaC templates) into pipelines to support continuous security posture aligned with RMF and POA&M requirementsSupport integration of Power Platform solutions (Power Apps, Power Automate, Copilot Studio) with Azure backend services, ensuring proper ALM (Application Lifecycle Management) and environment management in GCC HighDesign and implement API integrations, webhook architectures, and service bus patterns for cross-system data exchange supporting business processes, staffing workflows, and knowledge management toolsDevelop monitoring, alerting, and observability infrastructure (Azure Monitor, Application Insights, Log Analytics in GCC High) for deployed applications and pipelinesMaintain pipeline and integration documentation including architecture diagrams, runbooks, and integration interface control documents (ICDs) as CDRL A006 deliverablesSupport the Integration Plan (CDRL A016) by providing automated validation and checkout capabilities for prototype system configurationsCollaborate with cybersecurity personnel to ensure DevSecOps infrastructure meets RMF, STIG, and continuous monitoring requirements for R&D test environmentsStay current on AzureGov service availability, GCC High feature parity, and emerging DevSecOps practices for DoD environments

Supervisory Responsibilities None. May provide technical leadership and mentorship to junior developers and DevOps engineers.

Required Qualifications and EducationBachelor’s degree in Computer Science, Software Engineering, Information Technology, or related field (or equivalent combination of education and experience)8+ years of experience in software engineering, DevOps, or CI/CD pipeline engineering, with at least 3 years in DoD or Federal environmentsDemonstrated experience with Azure DevOps in GCC High or equivalent FedRAMP High CI/CD platformsProficiency with Infrastructure as Code: Terraform, Bicep, ARM templates, or Ansible for AzureGov resource provisioningHands-on experience with container technologies: Docker, Kubernetes (AKS), Helm charts, container registriesStrong scripting and automation skills: PowerShell, Bash, Python, and/or YAML pipeline authoringExperience integrating SAST/DAST tools, container image scanning, and dependency vulnerability analysis into CI/CD pipelinesWorking knowledge of MS365 GCC High, NMCI, and/or FlankSpeed environments and their deployment constraintsUnderstanding of DoD Cloud SRG impact levels (IL4/IL5/IL6) and their implications for CI/CD and deploymentFamiliarity with CMMC 2.0, NIST SP 800-53, DISA STIGs, and cybersecurity compliance requirements for DevSecOpsExperience with API design, integration patterns (REST, GraphQL, message queues), and cross-system data flowsStrong understanding of Git workflows, branching strategies, semantic versioning, and release managementExcellent analytical, problem-solving, and technical communication skillsU.S. citizenship requiredActive DoD Secret clearance required; TS/SCI eligibility preferred

Required Certifications: One or more of the following (or equivalent demonstrated expertise):Azure DevOps Engineer Expert (AZ-400) or Azure Administrator Associate (AZ-104)Certified Kubernetes Administrator (CKA) or Certified Kubernetes Application Developer (CKAD)CompTIA Security+ CE (or higher, to satisfy DoD 8140 baseline if applicable)

Preferred Qualifications and EducationExperience with Azure DevOps service connections and agent pools in air-gapped or boundary-controlled DoD networksExperience with Power Platform ALM (Application Lifecycle Management), solution packaging, and environment management in GCC HighFamiliarity with GitOps practices (Flux, ArgoCD) in Government cloud environmentsExperience implementing DoD Zero Trust Reference Architecture principles in CI/CD and deployment pipelinesKnowledge of EO 14028 software supply chain security requirements (SBOM generation, provenance attestation)Experience with Azure Policy, Defender for Cloud, and compliance automation in AzureGovFamiliarity with NMCI and FlankSpeed application onboarding and deployment processesExperience with database CI/CD (schema migration automation, data versioning)Knowledge of IRIG-106 data standards and T&E range system integration patternsExperience supporting FMS (Foreign Military Sales) program environmentsAdditional certifications: HashiCorp Terraform Associate, AWS DevOps Professional, Azure Solutions Architect Expert

Physical Demands/Work EnvironmentCombination of office and laboratoryDirect, hands-on support to users and operational systemsMay require support during test events or extended operational hours

Affirmative Action/EEO statementF3EA, Inc. is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.

This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. F3EA, Inc. makes hiring decisions based solely on qualifications, merit, and business needs at the time.

Other dutiesPlease note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.