Be an early applicantLess than 25 applicants

Company

LMI · 1 day ago

DevSecOps Engineer - Clearance Required

United States

Full-time

Remote

Mid, Senior Level

6+ years exp

Maximize your interview chances

AnalyticsConsulting

Comp. & Benefits

No H1B

Security Clearance Required

Insider Connection @LMI

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Implement security measures and controls within CI/CD pipelines.

Conduct regular security assessments and vulnerability scans.

Ensure compliance with Navy and Department of Defense (DoD) security standards and policies.

Develop and maintain automation scripts to streamline and enhance deployment processes.

Utilize configuration management tools (e.g., Ansible, Puppet, Chef) for consistent environment setup.

Automated deployment and support of Kubernetes clusters.

Development and ongoing support of Helm Charts, CFTs and other various templates.

Design, implement, and manage CI/CD pipelines to ensure efficient and reliable software delivery.

Integrate security tools and practices into CI/CD workflows to detect and mitigate risks early.

Set up and maintain monitoring and logging solutions to detect and respond to incidents in real-time.

Collaborate with security teams to investigate and remediate security incidents and breaches.

Work closely with development, operations, and security teams to ensure seamless integration of security practices.

Provide training and guidance to team members on security best practices and DevSecOps methodologies.

Utilize IaC tools (e.g., Terraform, ARM, CloudFormation) to manage and provision infrastructure.

Ensure infrastructure is secure, scalable, and compliant with Navy requirements.

Identify and address potential security risks and vulnerabilities throughout the development lifecycle.

Implement risk mitigation strategies and conduct regular risk assessments.

Ensure all systems and applications comply with relevant regulations and standards (e.g., NIST, FISMA, RMF).

Maintain comprehensive documentation of security practices, procedures, and incident response plans.

Optimize performance and scalability of applications and infrastructure.

Conduct performance testing and implement improvements as needed.

Stay current with emerging technologies and security trends.

Evaluate and integrate new tools and technologies to enhance the security posture of Navy systems.

Develop and maintain disaster recovery plans and organization continuity strategies.

Conduct regular drills and tests to ensure preparedness for potential disruptions.

Assist in the design, development, and deployment of secure software solutions.

Ensure security is considered throughout the software development lifecycle (SDLC).

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

SECRET security clearanceDoD 8570 IAT Level II Certification5 years DevSecOps experienceContinuous Integration/Continuous Deployment (CI/CD)Degree in Computer ScienceC# programmingUnix/Linux operating systemsContainerizationKubernetes (K8s)AWS Code Pipeline/Code DeployBash shell scriptingAgile development methodologiesAutomation scriptingRisk managementDisaster recovery planning

Required

Minimum of a SECRET security clearance

Bachelor’s degree in Computer Science or related technical field

DoD 8570 IAT Level II Certification (SEC+ or other)

5-years’ experience as a DevSecOps or Platform Engineer

Previous government technology experience – ideally with the US Navy

Minimum of 2+ years of experience programming in C# or similar.

Ability to debug, optimize code, and automate routine tasks

Systematic problem-solving approach, coupled with effective communication skills and a sense of drive

Understanding of Unix/Linux operating systems

Demonstrated experience building continuous, automated build and deploy pipelines.

Demonstrated experience in conditional procedure of build and deploy pipeline based on security scans of source and artifact.

Capable of working with software development team and platform infrastructure team to provide meaningful guidance to both for code development and deployment.

In-depth knowledge of version control of release artifacts to facilitate upgrade rollout and rollback.

Strong understanding of containerization of web applications.

Understanding and familiarity with container orchestration engines such as K8s (EKS, AKS, GKE, Kops, OpenShift)

Demonstrated Experience with AWS Code Pipeline / Code Deploy

Experience with bash shell scripting.

Experience with Agile development methodologies and working with Agile teams.