We are looking for either a junior or journeyman DevSecOps Engineer who will work as a member of a DevSecOps team focusing on automation development, testing, and deployment through the entire Continuous Integration and Continuous Deployment/Delivery (CI/CD) pipeline development lifecycle. The ideal candidate will work to bring modern software development techniques to our DOD customers. The DevSecOps Engineer serves as an escalation point for critical and complex issues, performs configuration, integration, and testing of products, assists with developing and documenting work processes, and trains other team members.
Requirements- One of the following combinations of education and experience:
- BS/BA degree and between of 1-10 years of related experience.
- High School Diploma or equivalent and between of 5-14 years of related experience
- Design, implement, and maintain systems of varying complexity that support the DevSecOps paradigm of software development processes in a Linux and Windows environment.
- Software development experience in one or more general-purpose programming languages: Java, Python, Go, Ruby, C++, etc.
- Experience with integrating Security Information and Event Management (SIEM) technologies and techniques.
- Experience working with Software Development Lifecycle tools, such as GitLab, Jira, Jenkins.
- Experience working with containers (Kubernetes, Docker).
- Working experience cloud, virtualization, APIs, and modern software languages.
- One of the following active DoD 8570 IAT Level II certifications:
- CCNA-Security
- CySA+
- GICSP
- GSEC
- Security+ CE
- CND
- SSCP
- US Citizenship Required; Ability to obtain and maintain DoD Secret Clearance (Interim clearance required to start, full clearance at the completion of the government’s process).
- Prior expereince with Security Information and Event Management (SIEM) systems like Elastic, Wazuh, Splunk, LogRhythm, QRadar, ArcSight Enterprise Security Manager (ESM).
- Experience working with automation tools such as Ansible, Vagrant, Puppet, Terraform, and similar toolsets.
- Experience with SAST and DAST tools such as Coverity, Klocwork, SonarQube, Fortify, Mayhem.
- Experience with patch cycles and update management
- Understanding of RMF processes and DoD security standards
Gray Analytics values our employees as our most important resource. To showcase these values, we offer not only traditional medical, disability, life, etc. coverages that begin on day one of employment, but also unique benefits to improve our employees' quality of life. Some of these unique benefits include:
- A PTO policy based on total years of experience, not years of service to the company. PTO is available for use immediately at hire, subject to company needs.
- Eligibility for 401K contributions and company matching, Pet Insurance through Spot, Flexible Spending Account, and Tuition and Professional Development Funds begin on day one of employment.
- Charitable donations program on a yearly and quarterly basis where employees can nominate a non-profit of choice to receive donations.
Gray Analytics is an Equal Opportunity Employer and VEVRAA Federal Contractor. This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, gender identity, sexual orientation, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, protected veteran status or disability. Gray Analytics, Inc. welcomes minority and veteran applicants.
#J-18808-Ljbffr