DevSecOps Orchestrator

Candidate will write compliance as code (CaC) profiles and BASH scripts/python to execute from within a Bare Metal /  AWS Kubernetes Docker / Containerd environment. Candidate will be required to instantiate various technologies in the environment to test profiles and scripts. Code profiles/scripts will be based on DISA Security Technical Implementation Guidance (STIG) documentation. Candidate will support a DevSecOps pipeline that will perform quality assurance and validation on the CaC files.

Duties and Responsibilities:

• Ability to understand business requirements and translate them into technical requirements.

• Design and develop dynamically scalable, highly reliable, and fault-tolerant infrastructure.

• Development of Chef InSpec Profiles and Prisma Rulesets (BASH Scripts) to validate compliance in a container environment.

• Development, support, and maintenance of CaC files through the software pipeline.

• Validate CaC files by instantiating technology and testing files using CHEF InSpec and Prisma.

• Perform merge requests and reviews using Gitlab and other DevSecOps tools.

• Automated build/deployment environments - production, staging, development (e.g., Maven, Jenkins, Git, Argo); tag/release/build processes.

• Support enterprise customers with implementation and overall usage of the tools.

• Deploying product updates, identifying production issues, and implementing integrations that meet customer needs.

• Trace complex build problems, release issues, and environmental issues.

• Work collaboratively with the team during sprints to ensure technical obstacles are removed and deliverables are achieved.

• Development/staging/production environment management, to include deployment to production (outage requests, etc.)

• Prepare appropriate documentation such as program code, and technical documents.

• Coordinate with business analysts/QA team to troubleshoot and debug issues, initiate testing, and ensure testing is completed successfully.

• Ability to use a wide variety of open source technologies and tools.

• Provide technical guidance and educate team members and coworkers on the particulars of DevOps-based development and deployment.

• To improve practices for infrastructure development and application development.

• Any other task assigned by the management. 

Skills (Desired and/or Required):

• Practical exposure with Continuous Integration/Continuous Delivery tools like GitLab and Jenkins, to merge development with testing through pipelines.

• Experience with containerization technologies (Docker, Containerd, Kubernetes, OpenShift, etc.) and possess the ability to instantiate a containerized application for the purpose of compliance checking.

• Experience with AWS virtual infrastructure and DevSecOps tools such as Development IDE's, GitHub, or GitLab for source code management.

• Experience with various Linux operating systems (Centos, Ubuntu, etc...) and command-line operation.

• Experience with bare metal/cloud networking and native tools.

• Experience with modern front-end builds pipelines and tools.

• Experience with Git as a source code control provider. 

• Excellent problem-solving skills and attention to detail. 

• Knowledge of Agile framework, Scrum methodologies, and knowledge of tools used to support them.

• Knowledge of security tools and Security Technical Implementation Guides (STIG)

• Knowledge of BASH or Python, ability to write scripts to automate software compliance processes.

• Knowledge of developing serverless AWS applications with Amazon Lambda. 

Requirements:

• 8+ years experience in the DevSecOps field.

• Cloud-based data queuing, batching, and messaging (e.g., Kafka Messaging, Kafka Streams, NiagraFiles).

• Cloud-based streaming analytic environments with big data ingestion/processing (e.g., Heron, Storm, Flink).

• SQL, NoSQL, and Caching databases (e.g., MySQL, Cassandra, Elasticsearch, Redis).

• Experience with distributed monitoring/logging software (e.g., Prometheus, Grafana, Kabana).

• Agile development practices (e.g., Scrum/Sprints, Jira/Confluence).

• Strong experience in deploying Lambdas (node, Java), and their trigger queues, dlqs, timeouts, retries, memory allocations. 

• Experience working with AWS databases and object storage (RDS, DynamoDb, S3). 

• Experience developing with AWS services using SDKs.

Education:

• Bachelor's degree in computer or engineering field or equivalent experience

Required Certifications:

• IAT Level II Certification

• Security+ CE (or higher)