DevSecOps Engineer I

About The Position

Requirements

• Bachelor’s degree with an emphasis in Computer Science, Computer Engineering, Software Engineering, MIS, or related field.
• Highly technical and analytical hands-on experience in prior professional, educational, or personal projects.
• Understanding of networking concepts such as DNS, IP, NAT, VLANs, subnetting, etc.
• Experience with both Windows and Linux operating systems. Including familiarity with the command line.
• Understanding of the OSI Model, web, and network protocols such as TCP, UDP and HTTP/S.
• Competency with one or more scripting/programming languages such as Python, JavaScript, Java, Ruby, Go, PowerShell, Bash, C#, C/C++, etc.
• Fundamental understanding of cryptography controls and underlying concepts to secure data.
• Ability to independently identify and resolve issues through effective problem-solving skills.
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious, and adaptable.
• Strong written and verbal communication skills with the ability to interpret and fully explain the impact of vulnerabilities as well as any recommended remediation to multiple knowledge levels.

Nice To Haves

• Adaptive Communication (NM) - Formulates strategies to be used to convey complex information about services, products, systems, or processes to targeted audiences; communicates and liaises between technical and non-technical audiences.
• Customer Centricity (NM) - Applies a customer first mindset to design and continuously improve solutions, systems, processes, and services that support enterprise strategy, impact critical business outcomes, and drive organizational success.
• Data Security (NM) - Ensures customer privacy, confidentiality, and appropriate access to PII, PHI, and other individual private data. Assures adherence to legal/regulatory requirements, including but not limited to, HIPAA and product specific knowledge. Ensures practices, policies, and procedures are aligned to legal requirement for data management.
• DevOps (NM) - Applies continuous integration and delivery to implement applications and services at a higher velocity.
• Scripting & Integration (NM) - Applies scripting knowledge to automate and integrate different transactional systems to carry out a task or automation; uses systems that facilitate or automate one or more business application solutions, including records maintenance, inventory management, process analytics, and general admin.
• Security Practices (NM) - Undertakes best practices of technologies, policies, and processes designed to protect networks, devices, programs, and data from attack, damage, or unauthorized access.

Responsibilities

• Assist in the analysis of vulnerabilities as directed.
• Assist in engineering vulnerability management platform for reporting and automated governance.
• Provide vulnerability metrics to leadership through the creation and running of custom queries.
• Assist with reporting requirements and regulatory information gathering.
• Maintain and build out vulnerability scanning practices.
• Maintain configuration control of vulnerability management, CloudSec and AppSec platforms and tools; coordinate upgrades and other maintenance activities as directed.
• Automate manual tasks through scripting.

Benefits

• Pay Range - Start: $75,600.00
• Pay Range - End: $113,400.00
• Structure 110: $83,200.00 USD - $124,800.00 USD
• Structure 115: $86,960.00 USD - $130,440.00 USD