Type of Requisition:Regular
Clearance Level Must Currently Possess:None
Clearance Level Must Be Able to Obtain:Top Secret SCI + Polygraph
Public Trust/Other Required:None
Job Family:Cyber and IT Risk Management
Job Qualifications:Skills:DevOps, Monitoring Tools, Security Protocols
Certifications:None
Experience:8 + years of related experience
US Citizenship Required:Yes
Job Description:DEVSECOPS ENGINEER
The Engineer is an active participant in SAFe and Scrum development teams and meetings.
MEANINGFUL WORK AND PERSONAL IMPACT
• Automate and optimize service deployments
• Integrate with enterprise authentication services
• Establish and Improve system monitoring while maintaining established security
protocols within development, test, and production systems.
• Architect, build and maintain on premise and/or cloud infrastructure to support team
and customer initiatives
• Maintain and improve existing infrastructure (build out autoscaling, support new
services, optimize for cost efficiencies/authentication/search, etc)
• Administer production, staging and development environments
• Manage and aggregate server logs and monitor for security and system related incidents
• Monitor and analyze system performance, such as server load and resource usage
• Maintain and improve existing build and deployment processes using CI/CD tools
• Apply configuration management disciplines to maintain software revisions, security
patches, hardening, and documentation
• Enforce best practices for security and reliability, and drive security initiatives, like
access control and vulnerability testing
• Work with A&A Teams to maintain security requirements for operation of systems
• Maintain up to date documentation of designs/configurations, ensuring team members
have continuity of recurring tasks
• Maintain status of operations at all times: perform after actions reporting on all outages
and work with engineering teams to determine solution and root cause analysis. Present
findings to management for prioritization and tasking
• Create and determine required metrics for dashboards and service health
• Follow up on engineering tasks for operational solutions, and validate completion
• Manage operational readiness board - present at weekly meetings and determine if
development services are ready for automation based on best practices and
maintainability
• Track and ensure routine operations maintenance tasks are completed in a timely
manner
• Aligns to the customer's strategies
• Utilizes the customer's enterprise DevSecOps pipeline
• Work with other service providers to support areas of common interest
WHAT YOU'LL NEED TO SUCCEED
Bring your cyber expertise and drive for innovation to GDIT. The DevSecOps Engineer Principal must have:
• Education: Bachelor of Arts/Bachelor of Science
• Experience: 8+ years of related experience
• 3+ years of related systems programming experience
• Technical skills:
- Understanding of GitLab, Jenkins, ArgoCD, and other DevOps/Continuous Integration
tools for Kubernetes - Understanding of microservice design and architectural pattern best practices
- Understanding of Python, Bash, and Shell scripting
- Experience maintaining an operational environment and use of monitoring tools and
dashboard interfaces (ie. Kibana, Grafana, Nagios) - Experience working with container images and platforms
(Kubernetes/Docker/OpenShift) - Experience in building processes for deploying to a Kubernetes based environment using
Gitlab and Helm - Experience using Jira and Confluence on a daily basis
- Experience with deploying to on prem/data center infrastructure
• Security clearance level: Must be able to obtain TS/SCI w/Poly
• US citizenship required
• On-call support may be required
• Role requirements:
- Strong problem solving and troubleshooting skills
- Strong communication and interpersonal skills
- Strong understanding of DevOps and software/application development processes
- Knowledge of network technologies, common infrastructure components, load balancers, firewalls, virtual and physical infrastructure design
- Must possess excellent time management skills and the drive to work unsupervised
- Understanding of access management and security groups (i.e. IAM, S3 bucket, SSH,
VPN, etc.) - Ability to write and use unit and functional testing
The likely salary range for this position is $161,500 - $218,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Scheduled Weekly Hours:40
Travel Required:Less than 10%
Telecommuting Options:Onsite
Work Location:USA MD Annapolis Junction
Additional Work Locations:Total Rewards at GDIT:Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
Our Identity Verification Process:As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during virtual interviews. We reserve the right to take your picture to verify your identity and prevent fraud. By proceeding, you authorize the collection, processing, and use of your biometric data for identity verification and security purposes.