DevSecOps Engineer with Security Clearance
Data Machines
2024-11-06 01:43:11
Reston, Virginia, United States
Job type: fulltime
Job industry: I.T. & Communications
Job description
Data Machines is seeking talented and motivated DevSecOps Engineer(s) to contribute to a scalable compute environment that supports various software development, simulation, and big data requirements. You will join a team of other developers that own and operate the scalable compute environment that is accessed by a diverse set of users to support various mission use cases. Those who join will play a pivotal role in installing, configuring, and sustaining the scalable compute environment that operates on a multi-cluster Kubernetes infrastructure along with other tools and applications that are used to support these mission use cases. A significant amount of time will be spent on-site at a partner location working alongside other developers and stakeholders. The DevSecOps Engineer(s) will support an agile team that is focused on a software engineering culture and practice that aims at unifying software development, security, and operations. The main characteristic of DevSecOps is to automate, monitor, and apply security at all phases of software development: plan, develop, build, test, release, deliver, deploy, operate, and monitor. The role will work with Technical Leadership to provide support to include: Support continuous operation (e.g., deployment, auto-scaling) and monitoring (e.g., resource monitoring, security monitoring) of application services within a targeted deployment environment. Onboard software, hardware, and security controls in a DevSecOps manner by providing direct support to partners or organically accomplishing such efforts. Manage platform systems, to include Kubernetes clusters, dedicated virtual machines, and bare-metal instances Work as an engineer enabling the infrastructure and the development aspects of the systems. Develop and implement upgrades and automation throughout the various environments. Improve the system through updates and optimizations using various technologies. Automate security practices and integrate them seamlessly into the development and operational workflows. Collaborate with external teams and partners to integrate DevSecOps practices, or organically implement these efforts by leveraging tools for continuous security checks, testing, and deployment. Develop CI/CD pipelines that cover all software lifecycle phases: planning, development, building, testing, releasing, deploying, and monitoring. Implement quality gates at each phase to ensure that only compliant and secure code moves forward in the process. Implement robust code repository management strategies, including version control, branching, and merging processes to maintain code integrity and support multiple development workflows. Utilize configuration management tools to track and manage changes across environments and components, ensuring consistency. Maintain automated build processes that trigger based on code commits or other triggers, integrating static code analysis and continuous inspection to catch issues early. Integrate automated testing (unit, integration, and functional) within the pipeline to ensure high code quality and security. Enforce quality and security standards via continuous testing, inspection, and static analysis. Enhance collaboration and accelerate feedback loops to promote rapid and reliable software delivery. Continuously refine and update security measures as part of operational monitoring and response. Foster collaboration between developers, operations teams, and security experts to deliver secure, resilient software systems. Successful applicants will be required to commit to full time on-site at a secure location in the Reston, VA area working directly with operators and stakeholders. Minimum Qualifications: Active Top Secret clearance with favorable adjudication for SCI eligibility. Previous experience conducting face-to-face Tier 1 and Tier 2 user support. Previous work providing user support within a Linux/Unix environment. Hold a current DoD 8570 IA Baseline Certification, IAT Level II (example: Security+ CE, CCNA Security, CYSA+, etc.). Experience using ServiceNow, Remedy or a similar ticketing system. Comfortable using multiple communication channels (email, ticketing, chat, conferencing) to assist users. Experience working with FreeIPA and associated services (DNS, DHCP, Group Policy, Distributed File System, etc.). Willingness to learn and expand technical knowledge into new fields and technologies. Strong communication skills and ability to explain protocol and processes with team and management. Ability to work with minimal supervision in a changing environment. Team player. Desired Qualifications: Previous experience providing user support in a highly dynamic, innovation driven environment with constantly changing requirements. Demonstrated ability to implement scripted automation solutions to ease support tasks. Interest and willingness to level up your software development and system operation skills and responsibilities. Routine coordination with security professionals to continually define, develop, and review user management processes and procedures. Active TS/SCI Clearance.