This job has closed.

IPTA · 7 hours ago

DevSecOps Engineer

Kettering, OH

Full-time

Hybrid

Senior Level, Lead/Staff

8+ years exp

IPTA is a company focused on providing technical solutions to meet customer business needs. As a DevSecOps Engineer, you will lead efforts in incident response, vulnerability management, and security operations, while also collaborating with team members to enhance security frameworks and processes.

Information Technology

Senior Management

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Provides leadership in a company's Development, Security, and Operations (DevSecOps) areas of incident response, vulnerability scanning and management, problem management, certificate management, penetration testing, password policy management, data analysis of network security, remediation patching coordination, and compliance efforts

Chooses and implements the appropriate automated application security testing tools, making users aware of how to best use application security features

Collaborates with team members to develop an automated security framework for strong deployment tools and processes, leveraging various scripting languages and open source solutions

Recommends automation improvements to replace manual tasks for network infrastructure provisions and security operational processes

Gathers requirements, designs and implements solutions, manages technical operations, and triages and fixes network or security operational issues

Configures end-user and administration access that adheres to access control guidelines

Performs network or security analysis and troubleshooting; diagnoses root cause analysis, using monitoring tools and system analytics; and applies system patches to DevOps tooling

Provides technical support and guidance to users and other DevOps Engineers, answers technical questions, and resolves issues within network and security domains

Updates security procedures, and creates and maintains operations runbooks to report procedures and operations, so team members won't re-encounter known issues

Sets up, conducts risk assessment, monitors, and maintains proxy servers, systems, and firewalls

Performs application penetration testing and manual security code reviews

Coordinates change requests with relevant teams and end users, and provides status and schedule updates to them

Researches and maintains up-to-date knowledge of current technology trends and best practices for cloud site reliability engineering

Qualification

DevSecOpsPenetration TestingVulnerability ManagementSecurity ClearanceDoD 8570 CertificationTechnical SupportProblem SolvingCollaborationContinuous Learning