DevSecOps Engineer

About The Position

Requirements

• Ability to obtain a U.S. government Public Trust Security Clearance
• Bachelor's degree: degree in business administration, a technology-related field, or equivalent education-related experience.
• Minimum of 5 years of application DevSecOps Experience with actual/active development experience in an Agile environment.
• Hands on experience integrating Agile software development frameworks such as SAFe with DevSecOps methodologies
• Working knowledge of Git and repository providers such as GitHub, GitLab, Bitbucket
• Experience implementing container and orchestration infrastructure utilizing platforms such as Docker and Kubernetes
• Working knowledge of automated CI/CD build engines such as Jenkins, GitLab CI/CD, GitHub Pipelines, CircleCI, TravisCI
• Experience implementing Automated Testing frameworks including Selenium, as well as Salesforce specific tools such as Provar
• Hands on experience integrating Salesforce deployments with industry standard DevSecOps tooling and orchestration
• Working knowledge of SalesforceDX including package-based development models and scratch-org based development
• Experience working with teams on multi-tiered, complex distributed web applications (Bash Scripting, C#, C++, Java, Python, Perl, PowerShell, etc.).
• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate strategic information security topics, policies and standards as well as risk-related concepts to technical and nontechnical audiences at various hierarchical levels.

Responsibilities

• Help to build our Salesforce DevSecOps Strategy and Practice to integrate cybersecurity into the organizational adoption and improvement of agile practices.
• Partner with Salesforce Engineering team leads to create, implement and apply DevSecOps principles, processes and culture that are consumed by delivery teams across our company.
• Provide subject matter expertise in various risk assessments, working in an Agile environment with an understanding of the full software development life-cycle.
• Advocate for software engineering practices such as unit testing, code reviews, full build testing, quality engineering practices and requirements capturing techniques to the teams to improve end to end secure delivery practices.
• Advocate for and ensure appropriate security practices are communicated and implemented within their projects.
• Partner with development and operations teams to facilitate practical automation solutions and custom modules.
• Troubleshoot automation issues and when required, engage the resources to find practical solutions that move projects forward in a timely manner.
• Be a trusted automation and tooling adviser for DevSecOps initiatives by providing objective, practical and relevant ideas, insights and advice.
• Assist application teams with on-boarding to the adopted security tools/technologies; working with vendors to troubleshoot the platform and issues related to such integrations.
• Deliver tasks based on project objectives; technically support projects through to completion.
• Ensure deliverables are completed within target time-frames and are consistently of high-quality, documented and support transition of operational activities.
• Work with teams to bring continuous improvement to DevSecOps processes and tools.
• Engineer and implement solutions and provide recommendations for continuous improvement for the services provided.
• Present regular status updates and provide cross training to other DevOps team members.
• Be active in evaluating and recommending new technologies to our DevSecOps and Salesforce Practice.

Benefits

• Employee-owned company
• Startup mindset
• Time-tested approaches tailored for the federal government
• Human-centered design
• Diverse perspectives, backgrounds, and experiences
• Equal opportunity employer
• Additional Steampunk benefits