Lantana Consulting Group, Inc. provides services and software for standards-based health-information exchange. We have established ourselves as a trusted leader in the industry with two decades of expertise in developing and deploying technical specifications and interoperability solutions. As a rapidly growing distributed, employee-owned company, we hire exceptional talent nationwide and offer flexible remote work arrangements. We take pride in our mission to improve public health and quality of care and to advance research.

Primary purpose: 

Manages and integrates DevSecOps practices across DevOps Engineering, Release Management, and Security operations. Acts as a key manager and technical liaison, bridging internal teams and IT stakeholders to achieve organizational goals. Ensures that software-delivery pipelines are aligned with technical standards and federal security frameworks. Plays an active role in implementation and problem-solving. Guides integration of infrastructure, embeds security and compliance into delivery pipelines, and drives project delivery. 

A successful candidate will do the following:

• Lead, manage, and grow a DevSecOps team
• Align products and processes with federal IT requirements, including the application of NIST 800-53 controls and remediation of vulnerabilities 
• Leverage tools such as Jira and Confluence to support Agile management, release governance, and streamlined technical operations 
• Build team capacity by mentoring, coaching, and fostering professional development while also promoting a culture of collaboration, accountability, continuous improvement, and operational excellence 
• Partner effectively with cross-functional teams to remove roadblocks; enhance system security; drive release-readiness activities; and deploy software efficiently, securely, and reliably  
• Communicate clearly with leadership, monitor delivery and release metrics, manage risks and priorities, and allocate resources strategically to empower the team to succeed and achieve organizational objectives
• Stay informed about developments in the field and evolving best practices

• Bachelor's degree in Information Technology, Computer Science, or a related field and at least 12 years of progressive experience in DevOps, infrastructure engineering, software delivery, or related technical disciplines; or an equivalent combination of education and experience
• Minimum of three years of experience managing technical teams, including setting priorities, allocating resources, and developing team capabilities 
• Experience leading DevOps and CI/CD initiatives, including deployment automation, infrastructure management, and software-delivery processes 
• Experience collaborating with cross-functional teams, including software-engineering, QA, security, and infrastructure teams 
• Strong communication and leadership skills
• Experience working with technical and non-technical stakeholders 
• Must be able to obtain and maintain a Public Trust Level 5 clearance.

Preferred qualifications:

• Experience developing and implementing DevSecOps strategies, processes, and standards 
• Experience managing software-release lifecycles, including release planning, deployment governance, change management, and release-readiness activities. 
• Experience supporting federal agencies such as CDC or CMS, and knowledge of federal IT environments and compliance requirements 
• Experience applying NIST 800-53 controls, vulnerability remediation, and security-engineering practices. 
• Hands-on experience with automation using Python, PowerShell, Bash, or similar scripting languages 
• Experience with Azure DevOps and optimizing CI/CD pipelines 
• Experience with Cloud platforms and current infrastructure-management practices 
• Experience implementing Infrastructure as Code solutions using Terraform, Ansible, or similar tools 
• Experience with containerization and orchestration technologies (such as Docker and Kubernetes) 
• Experience implementing automated testing, monitoring, and security tooling in Cloud environments. 
• Experience with data encryption, key management, and solutions for security monitoring 
• Familiarity with CDC tools for continuous monitoring (such as Tenable.sc and Fortify) 
• Experience working in regulated or highly compliant environments 
• Current Security+ or similar industry certification

Additional information:

• We are a remote organization, but we prioritize in-person collaboration during key events such as our annual company meeting. 
• We are an equal-opportunity employer. All qualified applicants for current openings will be considered for employment without regard to race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), parental status, national origin, age, disability, genetic information (including family medical history), political affiliation, military service, or other non-merit based factors. 
• For this position, the candidate must reside in the United States.