Apply on Employer Site

Y-12 National Security Complex · 10 hours ago

Automation Engineer

Oak Ridge, TN

Full-time

Onsite

Mid, Senior Level

3+ years exp

Y-12 National Security Complex is seeking a highly skilled Ansible Automation Engineer to support mission-critical IT modernization and infrastructure reliability initiatives. The candidate will be responsible for designing, implementing, and maintaining automated solutions across secure on-premises and cloud environments, contributing to mission success by increasing system reliability and promoting DevSecOps practices.

ManufacturingProfessional ServicesSecurity

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Hiring Manager

Ty Johnson

Responsibilities

Develop, refine, and maintain Ansible playbooks, roles, and collections to automate system provisioning, configuration, patching, and application deployments across controlled environments

Implement automation workflows that align with federal IT policies, including FISMA, NIST 800-53, DISA STIG, and agency-specific security guidelines

Administer and support Ansible Automation Platform (AAP), including RBAC, credentials management, inventory design, and secure deployment pipelines

Collaborate with federal system owners, network teams, cybersecurity, and cloud operations to identify opportunities for automation that improve efficiency and reduce risk

Integrate Ansible into CI/CD pipelines using government-approved tooling such as: GitFlow, Azure DevOps, Podman, OpenShift (Kubernetes)

Troubleshoot, optimize, and document automation processes to ensure consistent performance and compliance

Develop and maintain detailed standard operating procedures (SOPs), system documentation, and diagrams for audits and security reviews

Support CyberSecurity processes by providing artifacts, remediation inputs, and automation-based compliance enhancements

Participate in on-call or after-hours maintenance windows as required to support operational needs

Qualification

AnsibleDevSecOpsCI/CD pipelinesAWS GovCloudAzure GovernmentScripting BashScripting PythonScripting PowerShellGitFederal cybersecurity complianceRHELUbuntuWindowsVSphereAPI integrationTerraformPackerHashiCorp VaultCyberArkRed Hat SatelliteSplunkELKGrafanaRHCEAnsible Automation SpecialistSecurity+CASP+Interpersonal skillsWritten communicationCollaborative mindset

Required

3–5+ years of experience in automation engineering, DevOps, system administration, or related IT roles—preferably within federal or DoD environments

Advanced expertise with Ansible, including playbook design, Jinja2 templating, variables, dynamic inventories, and collections

Experience automating systems administration with multiple distributions including RHEL 7 - 10, Ubuntu, Windows, IOS, vSphere

Experience interacting with Vendor products using API to automate provisioning, configuration management, and security auditing

Experience working within federal cybersecurity compliance frameworks, including STIGs, SCAP, RMF, and configuration baselines

Proficiency with Git and version control processes appropriate for controlled repositories

Hands-on experience with CI/CD pipelines and secure DevSecOps practices

Experience with AWS GovCloud, Azure Government, VMware or on-premises virtualized environments

Scripting proficiency in Bash, Python, or PowerShell

Ability to obtain and maintain a DOE Q clearance

Bachelor of Science in Computer Science or closely-related field: No experience

Eight or more years of relevant education, training and/or progressive experience may be considered to satisfy the educational and years of experience required for this posting

Requires a Q clearance; however, all qualified candidates will be considered regardless of their current clearance status. (The ability to obtain and maintain a Department of Energy 'Q' clearance is required.)

Preferred

Prior experience supporting federal agencies or defense organizations

Experience with Red Hat Ansible Automation Platform at enterprise scale

Familiarity with additional IaC tools (Terraform, Packer) used in government environments

Understanding of Zero Trust architectures, secrets management (HashiCorp Vault or CyberArk), and privileged access controls

Familiarity with Red Hat Satellite

Familiarity with Windows Servers as part of an Active Domain

Understanding of interactions via API, emphasis on enterprise platform integrations and bare metal provisioning

Experience integrating automation with monitoring/logging platforms such as Splunk, ELK, Grafana, or agency-specific tools

Relevant certifications: Red Hat Certified Engineer (RHCE), Red Hat Ansible Automation Specialist, Security+, CASP+, or equivalent compliance-related certifications

Strong interpersonal and written communication skills suitable for federal reporting and documentation

Ability to operate within structured governance frameworks and change-control processes

Collaborative mindset with the ability to coordinate across multiple government and contractor teams

Detail-oriented approach with a commitment to accuracy, repeatability, and operational security