Sr. DevSecOps Engineer

The DevSecOps Engineer Level II provides senior-level platform management architecture and supports the unification and automation of processes to enable the development of software capability across the entire IT organization instrumental in combining code application maintenance and application management.

Responsibilities

• Create lead and implement the tools to deliver an automated CI/CD pipeline-based DevSecOps system capable of supporting containers compiled software applications scripts and source code in a pre-compiled state
• Demonstrate a strong understanding of the development lifecycle goals and the transactions occurring within pipelines scanning tools deployments and all development lifecycle steps.
• Work across the development security operations and infrastructure (HW and SW) teams to ensure that the DevSecOps tools and processes support the holistic system development integration and fielding effort.
• Works actively with application development teams to coordinate and optimize the steps that execute within the DevOps ecosystem and bring consistency and best practices in approach tools and standards.
• Create and maintain fully automated Continuous Integration (CI) build and Continuous Deployment (CD) processes which include writing builds and deployment scripts. Actively participates and provides inputs in major design decisions working with Architects.
• Designs and develops the system to set the standard for future development and craft an architecture that smoothly works with existing infrastructure without compromising security. Identifies and introduces new opportunities to build platform-based solutions to help users meet their toughest challenges.
• Demonstrates experience identifying marketplace plugins and/or designing/developing custom connectors as needed.
• Supports enterprise IT to set the long-term strategy and roadmap for each teams platform standardization modernization and process/tool adoption.

Experience:

• Bachelors degree with seven (10) plus years IT development experience (with a minimum of 5 years of experience in DevSecOps practice & tools);
• 5 years of experience building DevSecOps services in IaaS/PaaS/SaaS in Cloud (AWS Azure) environments and a good understanding of their security considerations;
• 3 years of experience with containerization and orchestration tools like Docker and Kubernetes; Experience with Kubernetes Docker and/or other cloud orchestration technologies.
• 5 years of experience with CI/CD best practices automated builds and tests quality gates software quality and CI tools i.e. Jenkins Ansible Terraform etc.;
• 3 years of experience with configuration management tools i.e. Git GitHub GitLab Bitbucket others; Familiarity with branching strategies gated commits source-controlled management etc.
• 5 years of experience with implementing principles of DevSecOps; Atlassian JIRA or other defect tracking tool experience; Atlassian Confluence GitLab/GitHub Jenkins and artifact repository experience.
• Familiarity with security coding standard best practices static and dynamic scanning tools i.e. SonarQube Fortify Coverity PCLint etc.
• 5 years of experience with programming and scripting in a UNIX environment (Bash Shell PowerShell Perl Python Bash Ruby Shell Scripts);
• Must have Agile/SAFe and other related developer certifications and or demonstrate equivalent experience.

• Bachelors degree or equivalent experience in Computer Science or a related field
• Ability to obtain public trust clearance

• DevOps-related certifications