Senior DevSecOps Engineer

Posted:
10/7/2024, 3:37:31 AM

Location(s):
Alabama, United States ⋅ Huntsville, Alabama, United States

Experience Level(s):
Senior

Field(s):
DevOps & Infrastructure ⋅ Software Engineering

StraitSys Inc

Regular

Primary Function:  

StraitSys is looking for a DevSecOps Engineer with AWS experience to support the Federal Bureau of Investigation (FBI).  The DevSecOps Engineer will meet the needs of our software development lifecycle.  This role will use technical skills for the design and implementation of various CI/CD patterns while abiding by industry standards and policies. Often taking part in design and code reviews and offering direction to ensure project scoping activities match architectural goals and specifications. When new applications are introduced or current ones undergo changes, the DevSecOps Engineer will frequently work with partners in other divisions to provide build solutions. Other responsibilities include documenting DevSecOps processes and ensuring that the DevSecOps platforms are up to date and properly maintained. The DevSecOps Engineer will have a significant impact on the team as a member in charge of the enterprise’s engineering and maintenance.

Essential Duties:

  • Create, develop, and implement solutions to address infrastructure and security requirements.

  • Identify the needs for build automation, designing, and implementing CI/CD solutions.

  • Consult on DevSecOps requirements from diverse application/line of business partners.

  • Create plug-and-play/reusable solutions and patterns for CI/CD pipelines.

  • Create, develop, and implement automation and system integration for various build platforms.

  • Publish and disseminate CI/CD best practices, patterns, and solutions.

  • Ensure that the service’s uptime and response time SLAs/OLAs are met or surpassed.

  • Build or maintain CI/CD building blocks and shared libraries proactively for app and development teams to enable quicker build and deployment.

  • Design action plans to address CICD platform/tools/solutions’ shortcomings and difficulties.

  • Actively participate with team members and contractors/vendors to prevent or quickly address problems.

  • Troubleshoot, identify, and fix problems in the DevSecOps domain.

  • Ensure incident tracking tools are updated in accordance with established norms and processes, gather all essential data and document any discoveries and concerns.

  • Identify management concerns and problems, assess them, and offer prompt solutions and/or escalation.

  • Align with technological Systems/Software Development Life Cycle (SDLC) processes and industry-standard service management principles (such as ITIL).

  • Create and publish engineering platforms and solutions.

Supervisory Responsibilities:

  • None

Desired Knowledge, Skills & Abilities:

  • Comprehensive technical expertise in a variety of DevSecOps toolkits, including Ansible, Jenkins, Artifactory, Jira, Black Duck, Terraform, Git/Version Control Software, or comparable technologies.

  • Familiarity with information security frameworks and standards.

  • Knowledge of DevOps Automation (TerraFrom, GitLab, GitHub, GitHub Actions).

  • Knowledge of Prisma cloud, SIEM, SOC, Nesus, Crowd strike or similar services.

  • Familiarity with API Security, Container Security, AWS Cloud Security.

  • Familiarity with Amazon AWS policy, configuration, and security management tools.

  • Proven capacity for thinking leadership and a highly creative problem-solver.

  • Excellent analytical and interpersonal skills.

  • Ability to express technical information clearly at different organizational levels.

  • Knowledge of PCI-DSS, HIPPA, SOX, GDPR, and CCPA Standards and Policies and the associated certification and audit processes.

  • CISM, CISSP or other Security Certifications.

  • Auditing and Compliance Certifications such as CISA, PCI-ISA, and PCIP.

  • Experience with infrastructure as code (IaC) tools (Puppet, Ansible, AWS CloudFormation or equivalent).

  • Strong understanding of cloud computing platforms (AWS, Azure) and infrastructure services.

  • Demonstrated experience using AWS to include S3, EC2, SNS, SQS, and Lambda.

  • Experience with PowerShell or other scripting languages like Bash.

  • Experience with aws-cli (and other container images) as it relates to automation within CI/CD pipelines.

  • Experience with industry standard Static Code Analysis (SCA) tools such as SonarQube, Nexus IQ Server, Fortify, JFrog Artifactory.

Required Qualifications:

  • Active Top Secret Clearance.

  • Bachelor’s degree in Engineering, Computer Science, Management Information Systems or related discipline. 

  • 5+ years of related job experience.

  • Must be a US Citizen.

  • Ability to successfully pass a pre-employment drug test.

PREFERENCE STATEMENT
Preference will be given to Calista shareholders and their descendants and to spouses of Calista shareholders, and to shareholders of other corporations created pursuant to the Alaska Native Claims Settlement Act, in accordance with Title 43 U.S. Code 1626(g).

EEO STATEMENT
Additionally, it is our policy to select, place, train and promote the most qualified individuals based upon relevant factors such as work quality, attitude and experience, so as to provide equal employment opportunity for all employees in compliance with applicable local, state and federal laws and without regard to non-work related factors such as race, color, religion/creed, sex, national origin, age, disability, marital status, veteran status, pregnancy, sexual orientation, gender identity, citizenship, genetic information, or other protected status. When applicable, our policy of non-discrimination applies to all terms and conditions of employment, including but not limited to, recruiting, hiring, training, transfer, promotion, placement, layoff, compensation, termination, reduction in force and benefits.
 
REASONABLE ACCOMMODATION
It is Calista and Subsidiaries' business philosophy and practice to provide reasonable accommodations, according to applicable state and federal laws, to all qualified individuals with physical or mental disabilities.
 
The statements contained in this job description are intended to describe the general content and requirements for performance of this job.  It is not intended to be an exhaustive list of all job duties, responsibilities, and requirements.
 
This job description is not an employment agreement or contract. Management has the exclusive right to alter the scope of work within the framework of this job description at any time without prior notice.