Apply on Employer Site

Sev1Tech LLC · 3 days ago

DevSecOps and Automation Subject Matter Expert

Arlington, VA

Full-time

Onsite

Senior Level

Sev1Tech LLC is a leading provider of IT modernization, engineering, and program management solutions. They are seeking a highly skilled DevSecOps and Automation Subject Matter Expert to design, implement, and maintain the infrastructure and processes for a secure software development lifecycle for a federal customer.

ConsultingCyber SecurityInformation TechnologyInfrastructureSecurity

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Collaborate with cross-functional teams, including software developers, infrastructure engineers, security officers, and project managers, to gather requirements and provide technical guidance on the design and implementation of a Software Factory

Design, develop, and implement a scalable and secure DevSecOps infrastructure, including CI/CD pipelines, version control systems, and automated testing frameworks

Establish and maintain secure cloud environments (e.g., AWS, Azure, or GCP) that comply with federal security standards (e.g., FISMA, FedRAMP)

Implement automated deployment and configuration management processes, leveraging infrastructure-as-code (e.g., Terraform, CloudFormation, Ansible) and containerization technologies (e.g., Docker, Kubernetes)

Develop and enforce best practices and standards for code quality, application security, and performance optimization, ensuring adherence to federal guidelines and compliance requirements

Collaborate with security officers to identify and implement appropriate security controls, automated security scans, and vulnerability assessments throughout the software development lifecycle

Provide subject matter expertise in DevOps and automation, influencing the adoption of DevSecOps practices within the Software Factory

Conduct training sessions and workshops to educate and empower development teams in the use of DevSecOps tools and methodologies

Monitor the performance and health of the Software Factory infrastructure, applying necessary patches, upgrades, and optimizations to ensure high availability and minimal downtime

Continuously evaluate new tools and technologies in the DevSecOps space, proposing enhancements to existing systems, methodologies, and processes

Develop and maintain comprehensive documentation on the DevSecOps infrastructure, processes, and configurations

Stay up to date with emerging trends and industry best practices in DevSecOps, cloud computing, and automation, applying this knowledge to drive innovation and improvement in the Software Factory environment

Work closely with the federal client's IT staff, security personnel, and other stakeholders to understand their specific requirements, address their concerns, and resolve technical challenges

Qualification

DevSecOps practicesCI/CD pipelinesCloud environmentsFederal security standardsAutomation toolsScripting skillsSecurity scanning toolsAgile methodologiesCommunication skillsCollaboration skills

Required

Bachelor's degree in computer science, software engineering, or a related field. Equivalent experience will also be considered

Proven experience as a DevOps Engineer, Automation Engineer, or similar role, preferably in a federal or government contracting environment

Strong proficiency with relevant DevSecOps tools and technologies, such as CI/CD pipelines (e.g., Jenkins, GitLab), version control systems (e.g., Git), configuration management tools (e.g., Terraform, Ansible), and containerization platforms (e.g., Docker, Kubernetes)

Expertise in designing, implementing, and maintaining cloud environments with a focus on security and compliance using platforms like AWS, Azure, or GCP

In-depth understanding of federal security guidelines and compliance standards (e.g., FISMA, FedRAMP) and experience deploying software solutions adhering to these standards

Solid knowledge of security scanning tools (e.g., SonarQube, Fortify, OWASP Dependency Check) and vulnerability assessment practices

Strong scripting and automation skills (e.g., Bash, Python, PowerShell) to streamline and automate manual tasks and processes

Familiarity with Agile/Scrum development methodologies and experience working within an Agile team

Excellent communication and collaboration skills, with the ability to effectively interface with technical and non-technical stakeholders

Must be eligible to obtain a Department of Homeland Security EOD clearance (Requirements 1. US Citizenship, 2. Favorable Background Investigation)

Preferred

Active DHS/CISA suitability - 1st priority

Any DHS badge + DoD Top Secret - 2nd choice

DoD Top Secret + willingness to obtain DHS/CISA suitability - 3rd choice (it can take 10-60 days to obtain suitability – work can only begin once suitability is fully adjudicated)