DevSecOps Software Developer

Torch Technologies-posted 2 months ago
Full-time • Mid Level
Eglin Air Force Base, FL
251-500 employees
Professional, Scientific, and Technical Services
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

Torch Technologies is seeking a skilled and security-conscious DevSecOps Software Developer to join a team providing support to the AFRL/RW. This position plays a vital role in building and maintaining secure applications and services for multiple Science & Technology (S&T) networks-advanced, high-bandwidth, and configurable networks supporting the research and development needs of scientists, engineers, and collaborative partners. Working alongside cybersecurity engineers, network engineers, network/server administrators, and a dedicated DevSecOps engineer, you will contribute to a culture of security and automation throughout the software development lifecycle. This role is responsible for writing clean, secure, and well-documented code, as well as participating in security reviews, threat modeling, and vulnerability remediation efforts. This role requires a strong understanding of software development best practices, security principles, and the DevSecOps philosophy.

  • Collaborate with cybersecurity engineers and other developers to design and implement secure software architectures.
  • Participate in threat modeling and security risk assessments.
  • Contribute to the development of secure coding standards and best practices.
  • Research and evaluate new technologies and frameworks to improve the security and efficiency of the development process.
  • Write and maintain well-documented and testable code.
  • Work with network engineers and network/server administrators to ensure that applications are deployed and configured securely.
  • Contribute to the development of Infrastructure as Code (IaC) templates.
  • Participate in the automation of application deployment and configuration.
  • Write secure code that adheres to established security standards and best practices.
  • Participate in code reviews and security audits.
  • Remediate vulnerabilities identified through security scanning and testing.
  • Integrate security controls into the application development process.
  • Collaborate with the DevSecOps engineer to integrate security scanning tools (SAST, DAST, SCA) into the CI/CD pipelines.
  • Implement and maintain secure APIs and data storage solutions.
  • Participate in security incident response activities.
  • Develop and deploy applications in virtualized and cloud environments (e.g., VMware, AWS, Azure).
  • Implement security controls for cloud-based resources and services.
  • Develop and deploy secure containers and microservices.
  • Ensure that applications are properly instrumented for security monitoring and logging.
  • Monitor the performance and security of applications.
  • Contribute to the development of dashboards and reports to track key security metrics.
  • Document application architectures, code, and security controls.
  • Participate in training and knowledge sharing activities.
  • Implement and maintain robust logging and auditing mechanisms.
  • U.S. Citizenship
  • Bachelor's degree in Computer Science or related field. Additional 6 years of experience may be considered in lieu of degree.
  • Minimum of 8 years' experience in software development.
  • Strong understanding of software development principles and best practices.
  • Experience with at least one modern programming language (e.g., Java, Python, Go, C#).
  • Experience with secure coding practices (e.g., OWASP Top 10).
  • Familiarity with security frameworks such as NIST 800-series, DoD RMF, and DISA STIGs.
  • Experience with version control systems such as Git.
  • Strong understanding of cloud platforms such as AWS, Azure, or Google Cloud.
  • Experience with containerization technologies such as Docker and Kubernetes.
  • Active Secret clearance (TS/SCI and SAP eligibility preferred) is required. Security clearance level must be maintained throughout employment tenure.
  • Master's degree in Computer Science or related field.
  • Desired Experience with security testing tools and techniques.
  • Desired Certifications Security+, Network+, CCNA, and/or CCNP certification are strongly preferred.
  • Desired Certifications such as Certified Secure Software Lifecycle Professional (CSSLP) or Certified Ethical Hacker (CEH).
  • Desired Experience with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation.
  • ESOP participation
  • 401(k) match and safe-harbor contribution
  • medical, dental, vision, life insurance
  • short-term disability
  • long-term disability
  • flexible spending accounts
  • Health Saving Accounts and Health Reimbursement Accounts
  • EAP
  • education assistance
  • paid time off
  • holidays
Track Jobs with Teal

Job Search Resources

AI Resume Builder
DevSecOps Engineer Resume Examples
DevSecOps Engineer Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service