landing_page-logo
Pioneering Evolution logo

Lead DevSecOps/.NET Security Engineer

Pioneering EvolutionArlington, Virginia
Apply with Sonara
Apply

Automate your job search with Sonara.

Submit 10x as many applications with less effort than one manual application.1

Reclaim your time by letting our AI handle the grunt work of job searching.

We continuously scan millions of openings to find your top matches.

pay-wall

Job Description

POSITION DESCRIPTION:
Pioneering Evolution is seeking an experienced Senior DevSecOps / .NET Security Engineer to design and implement secure, scalable, and auditable middleware and deployment workflows that power a modernized federal software system. This high-impact, on-site role blends hands-on engineering execution with DevSecOps best practices, ensuring security is deeply integrated throughout the software development lifecycle and aligned with mission-critical federal outcomes. The ideal candidate will thrive in Agile environments, demonstrate technical leadership, and collaborate cross-functionally to drive Zero Trust adoption and compliance with federal mandates. Other key responsibilities include:

  • Develop secure .NET Core middleware components including authentication, RBAC, input validation, and structured logging.

  • Integrate automated security scanning and vulnerability detection into CI/CD workflows.

  • Generate and manage Software Bills of Materials (SBOMs) to enhance software supply chain integrity.

  • Harden Docker containers and build artifacts using least-privilege and minimal-attack-surface principles.

  • Define and enforce security gates and compliance checks within CI/CD pipelines in collaboration with DevOps teams.

  • Implement secrets and credential management using tools such as AWS Secrets Manager or Azure Key Vault.

  • Define API security standards and ensure consistent, traceable deployment practices across services.

  • Align implementations with compliance frameworks such as FIAR and NDAA, including control mapping and audit evidence generation.

  • Enforce Zero Trust principles across infrastructure, services, and CI/CD workflows.

  • Work closely with AI/ML engineers to secure data routing and enable metadata traceability.

  • Participate in design and code reviews focused on security, audit readiness, and traceability.

  • Mentor engineering peers and promote best practices in secure software development and operations.

REQUIRED EXPERIENCE:

  • Bachelor’s degree in Computer Science, Software Engineering, Cybersecurity, or related technical field.

  • Minimum of 6 years of backend development experience with C# and ASP.NET Core, including middleware and RESTful API design.

  • Strong understanding of authentication and authorization protocols (OAuth2, OpenID Connect, JWT).

  • Hands-on experience integrating static code analysis and vulnerability scanning tools into CI/CD workflows.

  • Experience generating and managing SBOMs and monitoring third-party dependencies.

  • Proficiency in Docker image development and container hardening techniques.

  • Experience with secrets management tools such as AWS Secrets Manager or Azure Key Vault.

  • Deep knowledge of secure coding standards, secrets handling, and structured logging practices.

  • Must be available to work full-time and on-site in the Washington D.C. metro area.

  • U.S. Citizenship and active Secret Clearance are required.

DESIRED EXPERIENCE:

  • Familiarity with secure reverse proxy frameworks (e.g., YARP) or API gateways.

  • Experience with policy-as-code frameworks (e.g., OPA, Gatekeeper) or infrastructure compliance tooling.

  • Exposure to observability and logging platforms like Sentry, OpenTelemetry, or similar tools supporting traceability.

  • Background aligning systems with compliance mandates such as FIAR, NDAA, or FedRAMP.

  • Understanding of Zero Trust architecture, service identity enforcement, and secure microservice communication.

WHO WE ARE AND WHAT WE OFFER:
In addition to competitive salaries and opportunities for professional development and advancement, our employees enjoy a comprehensive range of benefits. To keep pace with the changing needs of our employees, we continually evaluate benefit plans.

  • Paid time off

  • 10 paid holidays

  • Medical insurance

  • Dental insurance

  • Vision insurance

  • Legal assistance

  • Company-paid life insurance and AD&D

  • Company-paid long term and short-term disability insurance

  • Tuition reimbursement

  • 401(k) plan with company contribution

  • Continuing Education Opportunities