DevSecOps Engineer

Spartan Technologies, Inc. - Orlando, FL

We are looking for a DevSecOps Engineer.   This is a full time permanent role and requires a US Citizen or Green card holder.  This role is also fully remote.

The DevSecOps Engineer will be hands-on across the infrastructure stack in everything from networking, cloud and containerized environments, CI/CD pipelines, Infrastructure as Code (IaC) and monitoring with a focus on information security. Will work in a fast-paced environment utilizing modern Security and DevOps concepts and tools to support a variety of projects and products. This position will be in constant communication and coordination with software architects, security operations teams, project leaders, external customers, and senior management to build and deploy world-class information security solutions.

 Responsibilities include:

  • Automate the integration of security throughout the entire Software Development Lifecycle via a “security as code” approach
  • Work with the security team to create simulated attacks that run in the CI pipeline (DAST)
  • Participate in tabletop exercises to identify deficiencies in code and process
  • Standardize, develop and maintain common development tools and infrastructure, such as CI/CD pipelines, monitoring, cluster management, config management, etc.
  • Contribute to infrastructure, architecture, development, and deployment improvements
  • Provide technical guidance and educate team members and coworkers on development and operations
  • Monitor relevant systems for availability and performance

Minimum Qualifications:

  • Extensive experience designing, building, and maintaining appSec pipelines
  • BSC/BA in Information Technology, Computer Science or a related discipline
  • Experience in CMMI-3+ Environments
  • Experience building and managing Static and Dynamic Code Scanning pipelines
  • Experience working with SIEM and Log Management Systems
  • Experience working with Vulnerability management tools (e.g. Tenable, Qualys, Rapid7, etc)
  • Experience securing AWS, Azure, and OnPrem Infrastructures
  • Experience supporting production, Linux-based infrastructure and administering services on AWS (RDS, VPC, CloudWatch, Cloud Formation, Lambda, API Gateway)
  • Experience deploying DevOps technologies such as Kubernetes, Puppet, Salt, Ansible, Jenkins and Terraform
  • Experience with layer 7 technologies such as API gateways, proxies, application delivery controllers and web application firewalls.
  • Experience with database security and data segmentation practices for secure software apps
  • Strong scripting and tooling skillset (Python or Golang)
  • Self-motivated, resourcefulness and problem-solving aptitude
  • Ability to successfully interface with both internal and external clients

Additional Qualifications:

  • Excellent written and verbal communication skills
  • Professional documentation, presentation and planning skills
  • Excellent time management skills and proven ability to multi-task competing priorities
  • SOC, NERC, and other compliance standards knowledge a plus

 



Posted On: Tuesday, September 14, 2021



Apply to this job
  • *
  • *