Apply on Employer Site

Scientific Research Corporation · 1 day ago

RedHat DevSecOps Engineer

San Diego, CA

Full-time

Onsite

Senior Level, Lead/Staff

$96,600/d - $160,850/d

9+ years exp

Scientific Research Corporation (SRC) is seeking a RedHat DevSecOps Engineer to support their Overmatch Software Armory (OSA) Tools Support contract in San Diego, CA. The role involves leading system security requirements, designing security interfaces, and managing security assessments for systems and components.

Biotechnology

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Hiring Manager

Jennifer Coulter

Responsibilities

Leading the definition of system security requirements, including but not limited to the authorization boundary, security domains, classification of data, etc

Designing the security interfaces, security interconnections, and the trust relationship between system components and external systems

Implementing system security designs using commercial-off-the-shelf (COTS), government-off-the-shelf (GOTS), and open-source hardware and software

Overseeing the hardening and configuration systems and system components in accordance with various Federal, Department of Defense (DoD), and Intelligence Community (IC) guidance

Managing security assessments of systems and system components using industry standard automated vulnerability scanning tools; vulnerability scanning tools may include Tenable Nessus and Security Content Automation Protocol (SCAP)

Coordinating security assessments to identify security control failures and recommend corrective actions

Qualification

Red Hat Enterprise LinuxKubernetesSecurity ClearanceCompTIA Security+AnsibleDoD Security ImplementationAWSOpenShiftCI/CD PipelinesAgile DevelopmentSoft Skills

Required

Minimum of a bachelor's degree in Systems Engineering, Cyber Security Engineering, Computer Engineering, Computer Science, Information Systems, or similar discipline and 9 to 12 years work related experience; a masters degree in Systems Engineering, Cyber Security Engineering, Computer Engineering, Computer Science, Information Systems, or similar discipline and seven years of work related experience; or an equivalent combination of education and experience

Active security clearance, CSWF II (Linux), CompTIA Security + Certified, Privileged Access Agreement (PAA)

Red Hat Certified System Administrator or CompTIA Linux+ certification

Seven plus years of experience with RedHat Enterprise Linux or CoreOS, to include managing the container platform, creating and managing apps, configuring cluster scaling and networking

Five plus years of experience developing and managing Kubernetes-based storage solutions, autoscale solutions, and for building CI/CD pipelines

Seven plus years of experience and understanding of network design and troubleshooting as it applies to interoperability of security systems with the network

Seven plus years of experience as a system administrator working with Data Center migrations, server upgrades, O/S and firmware patching

Five plus years of experience of monitoring security bulletins and alerts from all Partners' network system vendors

Experience utilizing Ansible as a configuration management tool, for system administration of users or devices, or as a security compliance automation tool

Experience with DoD security implementation (e.g. STIG) and security tools including HBSS - ACAS

Experience being part of an Agile development team, ability to communicate and work in a fast-paced team setting

Preferred

Experience with or knowledge of DEVSECOPS principles and ability to work and advise multiple cross-domain teams, manage conflict, and communicate both very technically and to a layman

Expert knowledge with Windows and RHEL administration, in-depth knowledge of RHEL and Windows-based distros

Familiarity with a multitude of OSS tools and utilities for managing, monitoring and troubleshooting Linux infrastructure and networks

Certification as Red Hat OpenShift Administrator or otherwise experience in OpenShift configuration for applications to deploy and managing cluster operations

Experience with AWS as a cloud practitioner or azure solutions Architect or DevOps Engineer

Experience with Service Oriented Architecture, Microservice Architecture (MSA), or Representational State Transfer (REST) architecture(s)

Two plus years experience configuring and managing F5 Firewall infrastructure in an enterprise environment

Experience managing/administering web server architecture including Apache Tomcat on a RHEL O/S

Experience working with two or more of the following development components: GIT, Helm, Fortify, SonarQube, Chef, Docker, OpenShift, Kubernetes, OKTA, F5 APM, and ADFS

Experience administering servers, backup operations, and systems monitoring in multiple and complex network server environments

Experience with business continuity and disaster recovery; install new / rebuild existing servers and configure hardware, peripherals, services, settings, directories, storage, etc

Experience with web technologies such as HTML4/5, XML, and SOAPUI

Experience with middleware technologies RabbitMQ, Java, and/or .NET runtime

Experience using configuration management systems such as GIT, Apache SVN, or AWS CodeCommit

Experience with network analysis software such as SD Elements, Splunk, Sniffer, Wireshark, or Microsoft Network Monitor

Certifications in cybersecurity to include Certified Cloud Security Professional (CCSP) or Certified Information Systems Security Professional (CISSP)

Experience with scripting PowerShell for cloud management, automating user group administration, or as part of a CI/CD pipeline