Senior/Principal Continuous ATO (cATO) DevSecOps Engineer bei Open Positions

Zaden Technologies seeks a Continuous ATO (cATO) DevSecOps Engineer to accelerate security authorization and sustain continuous compliance for the System Integration, Test & Readiness (SITR) program.

This engineer will lead automation of RMF, NIST, and STIG evidence generation directly from DevSecOps toolchains — creating a living, self-evidencing security posture across classified and unclassified environments.

Role Responsibilities:

• Automate RMF evidence collection and control validation from CI/CD pipelines.
• Integrate tools such as SonarQube, Fortify, Coverity, and Trivy for code and container assurance.
• Implement policy-as-code and compliance scanning (OPA/Gatekeeper, Cloud Custodian).
• Build and maintain Continuous ATO dashboards in GitLab and ELK for real-time control visibility.
• Collaborate with security control assessors and AOs to streamline ATO package updates.
• Develop automated POA&M and artifact traceability pipelines for RMF and NIST 800-53 controls.
• Lead ATO automation within DevSecOps Factory environments in alignment with DoD cATO guidance.
• Conduct SAST/DAST integrations and deliver metrics to the Program Cyber Lead and ISSM.

Required Qualifications:

• U.S. Citizenship and ability to obtain/maintain a DoD clearance.
• 5+ years of experience in DevSecOps, Cyber Engineering, or ATO automation.
• Expertise in GitLab CI/CD, Terraform, and Kubernetes-based DevSecOps pipelines.
• Strong understanding of RMF, ATO, NIST 800-53, and CMMC 2.0.
• Experience generating automated compliance evidence and POA&M tracking.

Preferred Qualifications:

• Active Secret or TS/SCI clearance.
• Familiarity with Continuous ATO frameworks and DSOP Reference Architecture.
• Experience developing or maintaining IL4/IL5 cloud environments.
• Hands-on experience integrating compliance data into eMASS or similar tools.
• Security+, CISSP, or CCSP certification.

This position offers a unique chance to contribute to a vital aspect of national defense.

What we offer:

• Robust startup environment with a variety of projects to work on
• Growth paths and endless opportunities to learn and develop
• Paid holidays
• Employer contributions toward 401k
• Performance-based bonus and profit-sharing
• 50% coverage of health insurance for employees and their dependents

Zaden Technologies is an Equal Opportunity Employer with a commitment to diversity. We prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status. If you have a disability or special need that requires accommodation, please let us know by emailing us at [email protected].

To all recruitment agencies: Zaden Technologies does not accept agency resumes. Please do not forward resumes to our people team email or Zaden employees. Zaden is not responsible for any fees related to unsolicited resumes.