Sr. DevSecOps Engineer/ Security (TS/SCI)

Job Description

We are looking for Senior DevSecOps Engineer to support our DoD client. The position will be based in Chantilly, Virginia. We are looking for a skilled and motivated engineer with expertise in DevSecOps functions, systems engineering, automation, and cloud technologies. The successful applicant will be responsible for bridging the gap between the development and operations teams. Their primary focus is on automation, deployments, and infrastructure management. This Position requires a Top-Secret SCI clearance with the ability to get a CI Poly, adjudicated within the last 6 years.

Responsibilities

· Responsible for bridging the gap between development and operations teams. Primary focus is on automation, security, deployment, and infrastructure management.

· Software Release Systems: DevSecOps engineer shall develop and maintain software release systems and ensure smooth deployment and updates.

· Collaboration: They work closely with the software development team in developing secure automated CICD pipelines, integrating automated application and infrastructure unit testing, security testing (SAST, DAST) aligning with industry standards and best practices.

· Tooling: DevOps engineer shall employ a variety of DevSecOps tools to streamline processes

· Monitoring and Metrics: They monitor system performance, track metrics, and optimize resource utilization.

· Automation: DevOps engineers automate tasks related to deployment, scaling, and configuration management.

· Security: They address security concerns, security test automation, and implement secure practices.

· Operational Planning: DevOps engineer shall contribute to operational planning and disaster recovery strategy.

· Produce system designs, reference architectures, logical and physical architectural diagrams using modelling tools and documentation.

· Leads the technical planning, system design, technology evaluation, toolchain selection, research and development, develop prototypes, and coding of a solution for projects.

· Develop, document, and advocate secure coding standards, secure design principles, integration designs, secure and resilient deployment models and operational excellence.

· Estimate the level of work of development/implementation tasks; perform pilot implementation, identify and alleviate technical debts and enforce standards.

· Stay abreast with emerging technologies in your areas but not limited to systems engineering, cloud computing & deployment, network design/architecture, infrastructure automation, security best practices etc.

Requirements

· 10+ experience as DevSecOps and/or Systems Engineer with strong experience in CI/CD automation

· 6+ years of experience with programming languages in at least one or combined of the following Node.js, Python, Java, .NET, JavaScript, Angular or similar languages.

· 6+ years of experience with high proficiency working in Linux environments and/or RedHat, CentOS, Ubuntu

· 6+ years of experience with DevSecOps tool stack or like GitHub, Jenkins, GitActions, DockerHub, Terraform, Ansible, Chef, Puppet, Splunk, Nagios or similar is preferred.

· Strong familiarity of security testing automation within CI CD pipelines.

· 2+ years professional experience with at least one of the cloud providers (Amazon AWS, Microsoft Azure, Google GCP).

· 2+ years of professional experience dockerizing and orchestration docker containers on Kubernetes

· Familiarity of database design, deployment and maintenance of traditional and modern databases such as Oracle and/or MySQL and/or MongoDB and/or PostgreSQL

· Familiarity of US Federal standard frameworks such as NIST 800-53, FedRAMP, FISMA is preferred.

· Professional certifications are desired but optional.

· Must have held an active Top-Secret clearance within the last six years