Senior DevSecOps Engineer
sharon@hanstaffing.com
Malvern PA - 3 days onsite - 2 days remote
Long Term Contract
Long Term Contract
Responsibilities
- Design, build and maintain continuous integration/continuous delivery (CI/CD) pipelines with embedded security testing to effectively secure and deploy cloud-based (Azure or AWS) workloads.
- Design infrastructure and implement automation using infrastructure-as-code solutions.
- Write automation scripts following best-practice coding principles
- Lead improving the infrastructure to ensure high availability and performance of software components are upheld
- Maintain scalable logging and monitoring infrastructure for deployed services
- Work with peer software engineers to design resilient, scalable, and robust cloud and IoT services
- Work with developers to establish NoOps culture, empowering developers with next-generation self-service options.
- Collaborate with software engineers to figure out tool requirements, then drive the implementation, documentation, maintenance, and improvement of these tools
- Build automation for routine, simple, and complex tasks
- Create, manage and utilize appropriate technical procedural documentation (best practices, blueprints, runbooks, etc.)Tackle problems and resolve active production issues
- Learn, extend, and maintain our build, deploy, config, metrics, and alerting systems
- Coordinate all Corporate Systems MIM calls, including ensuring incidents and problem records are entered, followed up on and closed within Service Now Coordinate Linux server patching with the TCS managed service team and product teams
- Coordinate Desktop Patching and Management of Corporate Systems PC/Mobile endpoints builds along with standardizing CS Builds
- Coordinate Qualys Remediation for Corporate Systems PC/Mobile Endpoints
- Coordinate all Corporate Systems out of region (OOR) testing for impacted Corporate Systems product teams
- Act as a Subject Matter Expert for any assigned Operational Maturity Capability areas (Incident Management, Availability Management, Asset & Configuration Management, Knowledge Management, Security/Vulnerability Management, access management and others)
- You are able to influence the product teams to adopt the DevSecOps Mindset of fail fast and fail often
- Monitoring and measuring progress against DevSecOps Practices
- You are able to create POC for SaaS Monitoring tools
- You are looking for opportunities to automate deployments for product teams
- Up to date on the latest CI/CD industry trends; able to articulate trends and potential clearly and confidently, Extensive experience with CI/CD pipeline tools such as Ansible, Jenkins, GitHub, and Artifactory or Nexus
- Experience working with technologies such as Git, Git Actions, Docker, Kubernetes, Ansible, Terraform, Serverless E
- Expertise with Amazon Cloud Services – like EC2, S3, RDS, EKS, ECS, VPC, SNS, SQS, Route53, ECS, CloudWatch
- A good understanding of the Atlassian Suite (Jira, Confluence, Bitbucket)
- A strong desire to minimize the operational overhead of systems, large and small.
- You are able to influence the product teams to adopt the DevSecOps Mindset of fail fast and fail often
- Monitoring and measuring progress against DevSecOps Practices
- Continuously seek to develop new skills and technical expertise, as well as proactively share knowledge with others
- You effectively communicate complex and nuanced topics to other Developers, Leader and Peers succinctly
- You demonstrate the ability to be equally effective both when collaborating with peers and driving outcomes independently/autonomously
- You are motivated to work with leading edge technologies within Vanguard and is a thought leader on emerging platforms/technologies as a source competitive advantage
- You maintain continuous alignment of program scope with strategic objectives and makes recommendations to modify approach to enhance effectiveness
- You build credibility, establish rapport and maintain communications with product teams/stakeholders at multiple levels, including those external to the Department
- You effectively communicate complex and nuanced topics to other Developers, Leader and Peers succinctly
- You demonstrate the ability to be equally effective both when collaborating with peers and driving outcomes independently/autonomously
- Familiarity with IT security, patch management, change management practices
- Preferred security certification such as ISC2 CISSP, GIAC Security, Essentials Certification (GSEC)
- 2+ years' experience with Splunk, App Dynamics, Honeycomb, NewRelic, DataDog monitoring and alerts
Sharon Williams
HAN IT Staffing Inc
609-607-7229 Ext 435sharon@hanstaffing.com