Devsecops Engineer

BridgePhase specializes in designing, building, implementing, and operating digital services that help advance the mission of our Federal Government while preparing for new challenges ahead. We are currently seeking a highly skilled Engineer to support a long-term contract supporting a Department of Defense customer. In this role, you will provide a broad range of Cloud and Platform Operations (Day II) Operations to a DoD software factory, which includes DevSecOps Engineering, Systems Administration, and Data Operations support.
Role Responsibilities:
• Automate application deployment that leverages container technology through a complex cloud-based environment through tools such as Kubernetes, GitLab, and other CI/CD tools and technologies.
• Build, operate, and maintain technologies and processes that enable Infrastructure as Code (IaC), Configuration as Code (CaC), and other DevSecOps best practices.
• Administer routine application/software version upgrades, patches, remediate and fix vulnerabilities or other issues as they arise.
• Operate and maintain the platform and pipelines clusters, user access permissions, and ensure the security and integrity of data transfer between the clusters.
• Integrate DevSecOps tools and services to enable an automated pipeline that supports customer applications throughout their SDLC.
• Operate and sustain cloud-based CI/CD pipeline and components utilizing DevSecOps principles and best practices such as reducing human involvement through automation and similar.
• Perform routine operations and sustainment engineering and systems administration activities on the system, its components, platforms, and applications.
• Improve system, platform, and applications operations and functionality, monitoring, and optimization of resources.
• Continually seek to improve components functionality, security, etc., and proactively make recommendations in that regard.
• Support maintenance of the accreditations to include performing routine STIGing of system components, POA&M remediation, etc.
• Minimize downtown during peak hours and upgrades and installs planned to occur outside of the peak times the mission users need to access the environments.
• Ensure systems/apps/components are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan.
• Ensure that all users have the requisite security requirements, authorization, and need-to-know, and are aware of their security responsibilities before granting access to the Platform and/or its components.
• Produce documentation as needed on relevant systems operations and maintenance procedures to inform changes to applications and/or the platform.
• Configure, deploy, improve and administer cloud-based resources and cloud native resources, specifically AWS.
• Perform routine systems administration, monitoring and maintenance (e.g., version upgrades, patching, account management, routine troubleshooting) on cloud-based instances.
• Administer access control and identity and access management policies and best practices to ensure the security and integrity of the system, platforms and its components.
• Provide technical support and assist in any accreditation-related tasks and activities.
• Document and propose improvements to business processes workflows. Required Qualifications:
• Ability and supporting experience to perform tasks associated with duties and responsibilities above.
• Proven ability working in a system administration role supporting a wide variety of software applications.
• Prior experience working in an AWS environment is required.
• Strong desire to work in a team environment and learn new skills.
• Existing Secret Clearance is required.
• Willingness to support occasional travel/on-site work in San Antonio
Desired Skills and Experience:
• Experience in DevSecOps Engineering / Site Reliability Engineering.
• Familiarity with Core Services within AWS Gov Cloud (IAM, VPC, EC2, RDS, KMS, S3, etc.).
• Expertise in Administrating and Troubleshooting Production Kubernetes Clusters (RKE2 / EKS).
• Proficiency in GitOps (FluxCD / ArgoCD).
• Experience in Deployment via Helm, and Kustomize.
• Capable of Supporting and Administrating a Software Factory (Keycloak, Jira, Confluence, Nexus, Gitlab, Gitlab Runner, Mattermost, Fortify, and Sonarqube).
• Knowledge of Big Bang v 2.X Tech Stack (Istio, Prometheus, Grafana, EFK, ECK, OPA Gatekeeper, Minio, Twistlock, etc.).
• Experience with Iron Bank Hardened Containers.
• Skilled in Automation via CI/CD Pipeline Development (Gitlab).
• Proficiency in Code Reviews for Pull / Merge Requests.
• Experience with RHEL 7/8. • Expertise in Configuration As Code (Puppet / Ansible).
• Experience with Infrastructure As Code (Terraform).
• Proficiency in Python and Bash Scripting.
• Experience with automation via REST APIs.
• Experience with Agile (Scrum, Sprint Planning, etc.).
• Skills in Conducting Technical Demos for Team and Leadership.
• Ability in Writing and Maintaining Technical Documentation.
Required Certifications:
• CompTIA Security + CE (within 90 days of start date)
Preferred Certifications:
• AWS Solutions Architect Associate.
• Certified Kubernetes Administrator (CKA).
• Certified Kubernetes Security Specialist (CKS).
• HashiCorp Certified: Terraform Associate (003).
Position Benefits:
• Competitive compensation package.
• Flexible PTO plan.
• 401k plan with employer matching.
• Excellent health care package.
• Professional development and training budget.
• Regular social and community outreach opportunities.
• Exciting work on a meaningful, long-term project

Powered by JazzHR

4p27GQMc07