Devsecops Engineer Jobs

• Candidates must be a U.S. Citizen
• Job Location: Chantilly, VA

Position Overview:

The future of world-class mission support and innovative ground system architecture and software is being developed today in the Intelligence Community. The Enterprise Data Applications and Platforms group delivers enterprise solutions for data-centric and service-centric capabilities to empower our customer’s most important development, test, and operations activities. The chosen candidate will implement deployment automation, software incident monitoring, testing, and configuration management controls in for the ground enterprise’s platform services provider. The selected candidate will work seamlessly with other government and contractor team members in a challenging work environment.

Required Skills:

• Analyze developer recommendations for SW enhancements across cloud/containers/open source solutions.
• Assess developer performance by analyzing contract deliverables, program management reviews, architecture designs, and demonstration/tests.
• Facilitate transfer from a multi-tenant platform environment into a tailorable single-tenant environment solution.
• Optimize pre-increment planning + iterative integration demos/tests via Agile SW development best practices.
• Orchestrate software monitoring upgrades to ensure optimal performance and availability metric analysis.
• Institute automation improvements throughout the CI/CD pipeline including build, test, package and deploy.

Primary Qualifications:

• Education: Bachelor’s degree in Computer Science, Information Systems, Information Technology, or in related technical or scientific fields such as engineering, operations research, engineering management, or related STEM degree program.
• 1 or more AWS certification in Operations or Development, minimum Associate level (or other cloud service provider, i.e., Azure, OCI, GCP)
• Experience: BS 10+, MS 8+, PhD 5+
• Clearance: An active TS/SCI with CI Poly eligible
• 3-5 years’ experience managing teams and facilitating cross-team collaboration.
• One or more certifications in CISSP, ITOL, Sec+, other security certifications, Linux,
• 10+ years’ experience supporting Operational Systems or Development Platforms
• Extensive experience with DevSecOps, CI/CD and Enterprise CI/CD tools (GitLab, Ansible, Jenkins, etc)
• Knowledge of RMF, PCI-DSS, HIPPA, SOX, GDPR, or CCPA Standards and Policies
• Experience driving adoption of shift-level approach, policy-as-code, security-as-code, infrastructure-as-code, and zero trust compliance.

Desired Qualifications:

• Experience supporting developer environments, tools, and methods including analyzing developer needs.
• Experience coordinating and performing vulnerability assessments via automated and manual tools.
• Familiarity with virtualization platforms or container technologies
• Experience w/ implementing/integrating automation with disparate platforms and technologies.
• Ability to review and analyze vulnerability data with security teams to identify risks and prepare vulnerability reports for automation definition and establishing policy.
• Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to promote/implement the DevSecOps program throughout the organization.
• Experience w/ integrating automated testing in CI/CD pipelines.
• Familiarity with RHEL/CENTOS system administration
• Comprehension in the security areas of Key Management Systems, Certificate, Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.
• Experience w/ Git-based development workflows and tools
• Proficiency in various programming and scripting languages (preferably Python, JavaScript, Go)
• Experience configuring, implementing, and leveraging cybersecurity and networking diagnostic tools.