Details:
Title: DevSecOps Engineer
Various Location(s): Plano, TX; Ridley Park, PA; Hazelwood, MO; Oklahoma City, OK | (Hybrid position)
Rate: $71 hourly
Duration: approx. 12 mo. + conversions/extensions desirable
W2 Only.
No C2C. No 1099. No Third Parties
Nature of work requires U.S. Citizenship and ability to obtain Secret US Security clearance Post-Start
JOB DESCRIPTION
The company is currently seeking a DevSecOps Engineer to join the Next Generation Product Support (NPGS)team located in one of 4 locations; Ridley Park, PA, Hazelwood, MO, Oklahoma City, OK or Plano, TX.
The successful candidate will develop, document, and maintain standardized, efficient, and innovative processes, tools, methodologies and performance metrics to streamline the software engineering lifecycle and enable continuous integration, delivery, and deployment of safety critical software.
We operate as a fast-paced agile team and seek candidates who have proven skills in DevSecOps, Cloud environments, to automate, develop, monitor, improve and troubleshoot across software engineering development, tooling, testing, deployment, configuration process and security controls.
Position Responsibilities:
- Develop and enhance the NGPS development security practice by integrating secure coding solutions that identify security vulnerabilities within each phase of the software development lifecycle and enforce compliance within the CI/CD pipeline.
- Implement solutions that identify vulnerabilities within source code, open-source software libraries, hardened containers, and deployed applications by leveraging static application security testing (SAST), dynamic application security testing (DAST), container security scanning, and software composition analysis tools; and provide recommendations to remediate.
- Implement efficient processes centered around continuous integration best practice
- Develop an efficiency-centered code quality solution that enables visibility, transparency, and continuous monitoring within a shared responsibility model
- Implement immediate quality feedback loops for the developers building NGPS software
- Develop and implement an event-driven container security scanning and software composition analysis solution within the CI/CD pipeline using Prisma, AWS Inspector 2, X-Ray by Antifactory, and/ or Nexus Lifecycle
- Provide hands-on DevSecOps support to the NGPS portfolio, such tasks would include - infrastructure support and sustainment activities, CI/CD pipeline development and improvement, GitLab administration, AWS or Azure Cloud administration, and containerization.
- Collaborate on idea creation and development of the Software development tool chain
- Support the ongoing lifecycle maintenance of the DevSecOps tool chain
- Support the software quality efforts of our product deliveries to our partners and customers
- Ensure that secure development and deployment infrastructure supports CI/CD and automated verification systems.
- We work in a casual but professional environment with multi-disciplined teams of engineers that take pride in developing, integrating, testing and delivering innovative solutions.
- There is long-term potential for career growth into technical leadership or management positions and we value the curiosity, tenacity and imagination our engineers bring to our teams each day.
Basic Qualifications (Required Skills/ Experience):
- Technical assessment is required part of the selection process.
- Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science
- 5 or more years’ experience with software development
- 2 or more years’ experience with Cloud technologies, such as AWS, GCP or Azure
- Experience with Automation and Continuous Integration/Continuous Deployment (CI/CD) techniques and design pattern