Development, Security & Operations (DevSecOps) Engineer specializing in designing and implementing Continuous Integration/Continuous Deployment (CI/CD) solutions in on-premises, air-gapped systems for supporting the development of conventional and cloud-native applications Essential Duties and Responsibilities
- Design git-based CI/CD pipelines for conventional and containerized applications
- Integrate automated unit tests, SAST, DAST, and vulnerability scans into software development pipelines
- Design and deploy customized, air-gapped Kubernetes clusters on VMWare ESXI systems using containers published at the DOD Platform One Iron Bank container registry
- Offload software build components onto Kubernetes systems
- Raise level of software functional organization proficiency in DevSecOps, CI/CD, Agile Methods, and containerization
- Automate infrastructure deployments with Ansible and Terraform
- Create and delegate tasks as an Agile Scrum product owner while mentoring software engineers towards supporting program goals
- Draft technical documentation, user guides, and high-level process flows for stake holders
- Experience with cloud systems and architectures (Amazon AWS, Google Cloud or Microsoft Azure)
- Experience developing software with Java, Spring framework, JBoss, Python, JavaScript, node.js, and/or Angular
- Experience developing Infrastructure as Code (IaC) and Configuration as Code (CaC) using tools like Packer, Terraform, and Ansible
- Familiar with microservice architectures (REST, JMS, AMQP)
- Familiarity with Linux and scripting (Bash and Python, etc)
- Ability to work on high performing teams supporting multiple projects and personnel
- Strong oral and written communication skills
- Proven experience with cloud systems and architectures (Amazon AWS, Google Cloud or Microsoft Azure)
- Extensive experience developing Infrastructure as Code (IaC) and Configuration as Code (CaC) using tools like Jenkins, Packer, Terraform, and Ansible
- A passion for building and maintaining CI/CD pipelines for multiple product teams
- Development experience with Kubernetes, Docker, and Helm
- Experience configuring and using CI/CD automated pipelines, such as Jenkins
- Strong Bash and Python coding skills
- Active Clearance
- CompTIA Security+
- Experience with Istio
- RHCSA/CNCF CKA certifications
- Experience with DISA Iron Bank CI/CD pipeline and methods.
- Experience building software conforming to cybersecurity requirements under the Risk Management Framework or similar constructs
- Provisioning HA vanilla Kubernetes or Rancher Kubernetes systems on air-gapped networks
- Firm understanding of Kubernetes secrets, service accounts, and RBAC controls
- Experience integrating Kubernetes components: kube-vip or metalLB, cert-manager, Nginx, ArgoCD, and external-dns
- Infrastructure-as-Code development with Ansible and Terraform Designing CI/CD pipelines with Jenkins and GitLab, Coverity, TwistLock, Trivy, Docker, Kaniko, and Kubernetes
- Experience with administrating GoHarbor and Artifactory build artifact registries
- Hardening servers and Kubernetes clusters to DISA standards
- Administrating virtual servers and networks in VMWare vSphere
- Improving existing processes or establishing new systems requiring significant conceptualizing, reasoning, and interpretation
|