Principal DevSecOps Engineer

About The Position

Requirements

• Bachelor's degree in computer science, information systems, Cybersecurity, or a related field with 5 years of experience; OR Masters degree with 3 years of related experience, or 1 years with a PhD.
• Must have a DOD 8140 IAT Level II certification (ex: Security + CE or CISSP)
• Strong systems administrator experience, specifically in Windows/Linux Operating Systems environments
• Experience working with cloud technologies and platforms such as Microsoft Azure, Amazon Web Services (AWS), and Google Cloud
• Experience with DevSecOps practices, approaches, requirements, and iteration plans for a largescale classified government system
• Familiarity and skills in agile software principles, particularly regarding building a plan or roadmap for multiyear program / product
• Interest and aptitude in developing Infrastructure as code scripts in Terraform and Helm to provision cloud resources
• Familiarity with configuring and maintaining DevSecOps Continuous Integration/Continuous Deployment (CI/CD) pipeline tools including best practices, automated builds and tests, quality gates, software quality, and CI tools, i.e., Jenkins.
• Communicates effectively, both internally and externally to team
• Eager to expand knowledge and continually improve
• Ability to write or review software code (Java, Python, etc.)
• US Citizenship and active DoD Secret clearance or higher
• Must be able to support an in-person, closed-area work environment 100% of the time

Nice To Haves

• Experience with containerization and orchestration tools such as Kubernetes, Docker, and/or other cloud orchestration technologies.
• Experience with configuration management tools, i.e., Git, GitHub, GitLab, Bitbucket, etc.
• Experience with branching strategies, gated commits and source-controlled management
• Programming and scripting experience in a UNIX environment (C++, Perl, Python, Bash, Ruby, Shell, Scripts).
• Programming and scripting experience in a Windows environment (PowerShell, etc.)
• Experience with PaaS (Platform as a Service) infrastructure
• Experience with or basic knowledge of software development (i.e., Java/JavaScript, C++, C#, or any modern object-oriented language) and its life cycles
• Utilize Agile practices and principles to deliver high quality products and services
• Atlassian JIRA, Confluence, GitLab/GitHub, Jenkins, and Nexus repository experience
• Experience with security coding standard best practices, static and dynamic scanning tools, i.e., SonarQube, Fortify, Coverity
• Experience deploying and maintaining applications on Kubernetes clusters

Responsibilities

• Design, develop, deliver, and sustain new and existing cybersecurity technologies in support of further development of the GMD weapon system.
• Create, modify, and document all enhancements efforts, to include system design documents, standard operating procedures, operations and maintenance manuals/procedures, software development plans, and related documentation.
• Program design, coding, testing, debugging, and documentation.
• Recommend and utilize the appropriate programming language for each component or workload based upon performance requirements, supportability, integration with existing components, maintainability, and other selection criteria deemed applicable.
• Review current systems and analyze business functions or processes to understand the needs for which applications are being designed.
• Recommend system capabilities and objectives for assigned projects.
• Conduct quality assurance reviews.
• Develop all components and services using industry best practices such as test-driven development, centralized source code management, code reviews, and automated testing.
• Utilize continuous integration / continuous deployment (CI/CD) workflows to the maximum extent possible for all published components.
• Produce DevOps best practice templates to enable rapid implementation of DevSecOps development workflows.
• Provide subject matter expertise during the review of potential technologies proposed for integration with the environment.
• Fully document development efforts using a combination of code comments, project issue tracking, change requests, and formal documentation.
• Ensure that software deployments minimally impact production workloads running in production environments.
• Perform analysis and tests, as needed, to aid the design process and to document the end item business functionality and system performance requirements.
• Identify emerging technologies, alternatives, and standards implementations, such as machine learning (ML) and artificial intelligence (AI), to provide better support for developers and application stakeholders.

Benefits

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Profit-Sharing, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, vacation, sick leave, and maternity/paternity leave.