Senior DevSecOps Engineer

About The Position

Requirements

• 5 years of relevant experience in DevSecOps
• Experience in scripting and automation languages such as Bash, Python, Go, or Rust
• Experience with Linux/Unix administration/engineering
• Prior experience with containerization such as Docker and/or Kubernetes
• Experience with AWS services such as EC2, Route 53, S3, and/or IAM
• Experience in automating cloud deployments and developing infrastructure as code (IaC) using tools like Terraform and Ansible
• Experience applying DISA STIGs within cloud and containerized environments
• Possess and maintain relevant DoD 8570 IAT Level II Certification, which include any of the following: CCNA Security CySA+ GICSP GSEC Security+ CE CND: EC-Council’s Certified Network Defender (CND) SSCP
• Must have an active TS/SCI federal security clearance

Nice To Haves

• Bachelor’s degree
• Excellent problem-solving skills and ability to work in a fast-paced, evolving environment
• Effective written and verbal communication skills, capable of presenting technical information to non-technical audiences.
• Commitment to continuous learning and staying updated with the latest DevOps trends, security threats, and technologies
• Certifications (one or more preferred): AWS Solutions Architect Associate AWS SysOps Administrator AWS Solutions Architect Professional AWS DevOps Professional Certified Kubernetes Administrator Certified Kubernetes Security Specialist GIAC Cloud Security Automation HashiCorp Certified Terraform Associate or similar RHCSA or similar

Responsibilities

• Design and Manage Containerization Platforms : Design, deploy, and manage highly available, scalable, and secure containerization platforms (e.g., Docker, Kubernetes).
• AWS Services Implementation : Implement and maintain AWS services, including but not limited to EC2, ELB, S3, RDS, VPC, Lambda, and CloudFormation.
• Automation Scripting: Develop automation scripts for efficient deployment and management of cloud resources using tools like AWS CLI, Bash, Ansible, Terraform, and CloudFormation.
• Security Compliance: Apply DISA STIGs to ensure compliance with security standards and policies across all cloud and containerized environments.
• Data Pipeline Implementation: Implement data pipelines performing extract, transform and load (ETL) using tools such as Kafka, Conduit, RabbitMQ.
• DevOps Integration: Collaborate with development teams to integrate DevOps practices into the software development lifecycle, including continuous integration and continuous deployment (CI/CD) pipelines.
• CI/CD Pipeline Development : Develop and maintain secure CI/CD pipelines using tools like Gitlab CI/CD, or similar CI/CD tools (e.g., Jenkins).
• Automated Testing and Security Checks: Implement security checks and automated testing within continuous integration and deployment processes.
• Regulatory Compliance: Ensure compliance with security standards, such as NIST 800-171 and other DoD directives.
• Technical Troubleshooting: Troubleshoot and resolve complex technical issues in cloud, Linux, and containerized environments.
• Industry Trend Monitoring: Stay abreast of latest cloud native trends and services, evaluating their applicability to organizational goals.
• Mentorship: Provide mentorship and guidance to junior engineers and team members on AWS best practices, Linux engineering, and DevOps methodologies.
• Version Control Maintenance : Ensure development and infrastructure code is maintained within version control systems like Git for efficient collaboration.