Job Description

Responsibilities for this Position

Location: Any Location / Remote
Full Part/Time: Full time
Job Req: RQ211621

Type of Requisition:
Regular

Clearance Level Must Currently Possess:
None

Clearance Level Must Be Able to Obtain:
None

Public Trust/Other Required:
MBI (T2)

Job Family:
Cyber and IT Risk Management

Job Qualifications:

Skills:
Continuous Deployment, Continuous Integrations, Design, DevOps, Security Compliance
Certifications:
None
Experience:
10 + years of related experience
US Citizenship Required:
No

Job Description:

Continuous Integration / Continuous Deployment (CI/CD) Subject Matter Expert

The CI/CD Subject Matter Expert (SME) is the technical authority for building and operating secure, reliable, and efficient delivery pipelines across on-prem and multi-cloud environments. In this role, the CI/CD Subject Matter Expert owns the last mile to production. You will design, implement, and operate continuous deployment practices that move changes safely and automatically from "approved" to "live", with policy, security, and evidence built in. Your responsibilities include release orchestration, progressive delivery (blue/green, canary, feature flags), automated rollback, post-deployment verification against SLOs, and end-to-end traceability in ITSM. You'll make deployments predictable for executives, painless for engineers, invisible to end users, and auditable for compliance. You will align day-to-day practices to federal frameworks (NIST RMF/CSF, Zero Trust/TIC 3.0, SSDF) and sustain ATO requirements through automation.

Timeline: This is a contingent posting, expected to start in August, 2026

HOW the CI/CD SME WILL MAKE AN IMPACT

You will replace legacy deployment practices with gated, observable, and reversible deployments that run without drama. By baking risk controls into the pipeline, pre-prod contract tests, change approvals as code, traffic shaping, health checks, and error-budget-aware promotion, you will cut change failure, shrink MTTR, and raise deployment frequency without increasing incidents. You'll standardize a "paved road" to production, so teams spend their time building features, not handcrafting releases; leadership sees accurate, real-time status and rollback readiness; auditors see consistent records and evidence generated automatically with every deploy.

WHAT YOU'LL NEED TO SUCCEED:

• Education : Bachelor's Degree. In lieu of a degree, an additional four years of related experience required
• Experience :
  • 10+ years in in DevOps/Platform Engineering with hands-on ownership of production deployments at enterprise scale; 3+ years in regulated or federal environments (VA/DoD/DHS/HHS or highly regulated industry).
  • Demonstrated results improving DORA metrics (deployment frequency , lead time , change failure rate 5-10%, MTTR 20-40%) using progressive delivery and automated rollback.
  • Demonstrated results improving delivery KPIs (e.g., lead time 30-50%, change failure rate 5-10%, MTTR 20-40%) while sustaining ATO/ConMon obligations.
  • Proven implementation of feature-flag-driven releases, blue/green and canary strategies, and zero-downtime database changes (online migrations, backward-compatible schemas).
  • Experience integrating deployments with ITSM (automated change models/approvals, deployment records, back-out plans) and generating audit-ready evidence for RMF/ConMon.
  • Track record operating in multi-vendor/SIAM environments with cross-team release trains and joint incident "swarming."
• Technical skills :
  • Release Orchestration & Progressive Delivery: Deep experience with tools/patterns for blue/green, canary, and traffic shaping (e.g., gateways, service mesh, rollout controllers); automated promotion based on SLOs, synthetic checks, and real-user signals; automatic rollback on guardrail breach.
  • Feature Management: Design of flag strategies (kill switches, dark launches, percentage rollouts), flag lifecycle hygiene, and blast-radius containment; governance to prevent "flag debt."
  • Policy & Security-as-Code: OPA/Conftest, Sentinel, Checkov, Cloud Custodian; required tags/encryption, CIS/STIG baselines; pre-merge and pre-deploy enforcement.
  • Deployment Automation: GitOps/desired-state reconciliation (e.g., Argo CD/Flux) for infra and apps; immutable artifacts; environment drift detection and auto-reconcile; promotion through environment rings.
  • Containers & Platforms: Kubernetes/OpenShift operations (admission control, image policies, mTLS/service mesh), serverless and event-driven patterns; blue/green & canary releases.
  • Post-Deployment Verification: Telemetry-based health checks, canary analysis, error rates/latency budgets, capacity/perf gates, and automated smoke/contract tests in production-like paths.
  • Security & Compliance in the Pipeline: Policy-as-code (tags, encryption, network controls), SSDF/supply-chain controls (SBOM, signed artifacts, provenance), secrets management, and OSCAL/RMF evidence emission per deploy.
  • ITSM Integration: ServiceNow (or equivalent) change models, risk scoring, approvals-as-code, deployment records, and back-out plans tied to pipeline events; status page and comms hooks for RevOps.
  • Resilience & Chaos-Safe Practices: Fault injection/chaos experiments in pre-prod, controlled in-prod experiments with guardrails; DR runbooks validated via scripted drills.
  • Cost & Performance Awareness: Ephemeral environments, right-sized runners, cache strategies, and parallelization; collaboration with FinOps on cost per deploy and pipeline ROI.
• Security clearance level : Public Trust
• Skills and abilities:
  • Outcome Orientation: Designs deployments to measurable targets, deployment frequency, lead time, change failure rate, MTTR, SLO burn and publishes trends transparently.
  • Clear Communication: Explains rollout plans and risks in plain language for executives, engineers, and non-technical stakeholders; writes crisp runbooks and "go/hold/rollback" criteria.
  • Enablement & Leadership: Coaches teams onto the paved road; runs release readiness reviews; builds a community of practice for deployment excellence.
  • Risk Management Mindset: Uses counter-metrics (e.g., speed paired with quality) to prevent gaming; enforces "small, reversible changes" and safe-to-fail defaults.
  • Collaboration in SIAM: Coordinates cross-vendor release trains, enforces handoff OLAs, and leads post-incident learning that becomes pipeline policy.
  • Discipline & Governance: Maintains versioned deployment standards and exception processes; ensures OneVA TRM alignment where applicable; keeps documentation current.
• Preferred Certifications:
  • AWS Certified DevOps Engineer
  • Microsoft Certified DevOps Engineer Expert
  • Certified Kubernetes Administrator / Application Developer
  • Docker Certified Associate
• Location : Austin, TX - Hybrid Remote with periodic on-site meetings as required by the customer

GDIT IS YOUR PLACE:

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you build your skills and own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and 10 company-paid holidays

If you're passionate about making production deploys fast, safe, observable, and reversible, while meeting federal rigor and audit needs, we'd like to meet you.

The likely salary range for this position is $165,750 - $224,250. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:
40

Travel Required:
Less than 10%

Telecommuting Options:
Hybrid

Work Location:
Any Location / Remote

Additional Work Locations:

Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee's date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281388084

Continuous Integration / Continuous Deployment (CI/CD) Subject Matter Expert


The CI/CD Subject Matter Expert (SME) is the technical authority for building and operating secure, reliable, and efficient delivery pipelines across on-prem and multi-cloud environments. In this role, the CI/CD Subject Matter Expert owns the last mile to production. You will design, implement, and operate continuous deployment practices that move changes safely and automatically from "approved" to "live", with policy, security, and evidence built in. Your responsibilities include release orchestration, progressive delivery (blue/green, canary, feature flags), automated rollback, post-deployment verification against SLOs, and end-to-end traceability in ITSM. You'll make deployments predictable for executives, painless for engineers, invisible to end users, and auditable for compliance. You will align day-to-day practices to federal frameworks (NIST RMF/CSF, Zero Trust/TIC 3.0, SSDF) and sustain ATO requirements through automation.



Timeline: This is a contingent posting, expected to start in August, 2026



HOW the CI/CD SME WILL MAKE AN IMPACT


You will replace legacy deployment practices with gated, observable, and reversible deployments that run without drama. By baking risk controls into the pipeline, pre-prod contract tests, change approvals as code, traffic shaping, health checks, and error-budget-aware promotion, you will cut change failure, shrink MTTR, and raise deployment frequency without increasing incidents. You'll standardize a "paved road" to production, so teams spend their time building features, not handcrafting releases; leadership sees accurate, real-time status and rollback readiness; auditors see consistent records and evidence generated automatically with every deploy.



WHAT YOU'LL NEED TO SUCCEED:

• Education : Bachelor's Degree. In lieu of a degree, an additional four years of related experience required
• Experience :
  • 10+ years in in DevOps/Platform Engineering with hands-on ownership of production deployments at enterprise scale; 3+ years in regulated or federal environments (VA/DoD/DHS/HHS or highly regulated industry).
  • Demonstrated results improving DORA metrics (deployment frequency , lead time , change failure rate 5-10%, MTTR 20-40%) using progressive delivery and automated rollback.
  • Demonstrated results improving delivery KPIs (e.g., lead time 30-50%, change failure rate 5-10%, MTTR 20-40%) while sustaining ATO/ConMon obligations.
  • Proven implementation of feature-flag-driven releases, blue/green and canary strategies, and zero-downtime database changes (online migrations, backward-compatible schemas).
  • Experience integrating deployments with ITSM (automated change models/approvals, deployment records, back-out plans) and generating audit-ready evidence for RMF/ConMon.
  • Track record operating in multi-vendor/SIAM environments with cross-team release trains and joint incident "swarming."
• Technical skills :
  • Release Orchestration & Progressive Delivery: Deep experience with tools/patterns for blue/green, canary, and traffic shaping (e.g., gateways, service mesh, rollout controllers); automated promotion based on SLOs, synthetic checks, and real-user signals; automatic rollback on guardrail breach.
  • Feature Management: Design of flag strategies (kill switches, dark launches, percentage rollouts), flag lifecycle hygiene, and blast-radius containment; governance to prevent "flag debt."
  • Policy & Security-as-Code: OPA/Conftest, Sentinel, Checkov, Cloud Custodian; required tags/encryption, CIS/STIG baselines; pre-merge and pre-deploy enforcement.
  • Deployment Automation: GitOps/desired-state reconciliation (e.g., Argo CD/Flux) for infra and apps; immutable artifacts; environment drift detection and auto-reconcile; promotion through environment rings.
  • Containers & Platforms: Kubernetes/OpenShift operations (admission control, image policies, mTLS/service mesh), serverless and event-driven patterns; blue/green & canary releases.
  • Post-Deployment Verification: Telemetry-based health checks, canary analysis, error rates/latency budgets, capacity/perf gates, and automated smoke/contract tests in production-like paths.
  • Security & Compliance in the Pipeline: Policy-as-code (tags, encryption, network controls), SSDF/supply-chain controls (SBOM, signed artifacts, provenance), secrets management, and OSCAL/RMF evidence emission per deploy.
  • ITSM Integration: ServiceNow (or equivalent) change models, risk scoring, approvals-as-code, deployment records, and back-out plans tied to pipeline events; status page and comms hooks for RevOps.
  • Resilience & Chaos-Safe Practices: Fault injection/chaos experiments in pre-prod, controlled in-prod experiments with guardrails; DR runbooks validated via scripted drills.
  • Cost & Performance Awareness: Ephemeral environments, right-sized runners, cache strategies, and parallelization; collaboration with FinOps on cost per deploy and pipeline ROI.
• Security clearance level : Public Trust
• Skills and abilities:
  • Outcome Orientation: Designs deployments to measurable targets, deployment frequency, lead time, change failure rate, MTTR, SLO burn and publishes trends transparently.
  • Clear Communication: Explains rollout plans and risks in plain language for executives, engineers, and non-technical stakeholders; writes crisp runbooks and "go/hold/rollback" criteria.
  • Enablement & Leadership: Coaches teams onto the paved road; runs release readiness reviews; builds a community of practice for deployment excellence.
  • Risk Management Mindset: Uses counter-metrics (e.g., speed paired with quality) to prevent gaming; enforces "small, reversible changes" and safe-to-fail defaults.
  • Collaboration in SIAM: Coordinates cross-vendor release trains, enforces handoff OLAs, and leads post-incident learning that becomes pipeline policy.
  • Discipline & Governance: Maintains versioned deployment standards and exception processes; ensures OneVA TRM alignment where applicable; keeps documentation current.
• Preferred Certifications:
  • AWS Certified DevOps Engineer
  • Microsoft Certified DevOps Engineer Expert
  • Certified Kubernetes Administrator / Application Developer
  • Docker Certified Associate
• Location : Austin, TX - Hybrid Remote with periodic on-site meetings as required by the customer

GDIT IS YOUR PLACE:

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you build your skills and own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and 10 company-paid holidays

If you're passionate about making production deploys fast, safe, observable, and reversible, while meeting federal rigor and audit needs, we'd like to meet you.


The likely salary range for this position is $165,750 - $224,250. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.



Scheduled Weekly Hours:
40



Travel Required:
Less than 10%



Telecommuting Options:
Hybrid



Work Location:
Any Location / Remote



Additional Work Locations:



Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee's date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.


We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.


Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.


Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281388084

Job Tags

Full time, Contract work, Temporary work, Part time, Immediate start, Remote work, Work from home, Worldwide, Flexible hours,

Similar Jobs