DevSecOps Engineer

Oddball believes that the best products are built when companies understand and value the things they are working on. We value learning and growth and the ability to make a big impact at a small company. We believe that we can make big changes happen and improve the daily lives of millions of people by bringing quality software to the federal space. 

We're looking for a DevSecOps Engineer to join our CMS BDAMAX team, supporting a federal program that directly impacts the Medicare experience for millions of Americans.

What you'll be doing:

• Contribute to automated response patterns for security alerts and compliance drift
• Help integrate vulnerability findings into remediation workflows
• Support audit readiness, control validation, and remediation tracking for regulated data environments
• Assist with security incident response, including root cause analysis and preventative automation
• Embed security controls into CI/CD pipelines, including automated scanning, secrets detection, and compliance validation
• Provision and manage infrastructure using Terraform with an emphasis on reusable modules and secure configuration baselines
• Contribute to security best practices for enterprise adoption of AI engineering platforms including Amazon Bedrock, GitHub Copilot, Gemini, and Cursor
• Support governance controls for secure AI usage, including sensitive data handling, prompt security standards, and access control boundaries
• Partner with DevOps, Security, Architecture, and Development teams to implement secure engineering patterns
• Contribute to internal tooling that supports development and operational workflows

What you’ll bring:

• Hands-on experience with AWS (EKS, ECS, Fargate, EC2, S3, RDS Aurora PostgreSQL, Secrets Manager) and Kubernetes
• Experience building and maintaining CI/CD pipelines with Jenkins
• Proficiency with Terraform for infrastructure provisioning and environment management
• Familiarity with Argo Workflows in containerized environments
• Experience with AWS Security Hub, certificate management, and secure access practices
• Understanding of AWS VPC networking, Route 53, and cross-account access
• Familiarity with federal security compliance frameworks (FISMA, FedRAMP)
• Thrives in a remote, collaborative Agile environment and genuinely enjoys working closely with a cross-functional team
• Communicates clearly and openly, whether documenting technical work or just keeping teammates in the loop

• Performs other related duties as assigned

Requirements:

• Applicants must be authorized to work in the United States. In alignment with federal contract requirements, certain roles may also require U.S. citizenship and the ability to obtain and maintain a federal background investigation and/or a security clearance.

Education:

• Bachelor’s degree 

Benefits:

• Fully remote
• Annual stipend
• Comprehensive Benefits Package
• Company Match 401(k) plan
• Flexible PTO, Paid Holidays

Oddball is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires an accommodation during the application process should contact an Oddball HR representative to request such an accommodation by emailing [email protected]

Compensation:

At Oddball, it’s important each employee is compensated competitively and fairly. In alignment with state legal requirements. A range for the included position is listed below. Be advised, actual offer details are determined by job category, job location, and candidate skill level.

United States Wage Range: $100,000 – $140,000