Devsecops Engineer
| Company | KBR |
|---|---|
| Location | Chantilly, VA, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | Bachelor’s, Master’s |
| Experience Level | Mid Level, Senior |
Requirements
- Bachelor’s degree
- 3-5 years of DevSecOps experience
- Technical skills, knowledge and experience to accomplish work with minimal oversight
- Demonstrated ability to effectively communicate verbally and in writing
- Clearly and concisely express multifaceted concepts
- Develop ideas in a logical sequence leading to a validated conclusion
- Knowledge/experience of deployment/configuration management tools like Jenkins, Maven, Puppet, or Ansible
- Utilize version control tools like GIT, Bitbucket, SVN or CVS
- Experience with network infrastructure, database, cloud and data center operations, and security protocols.
- Strong knowledge of Linux and Windows OS
- Familiar with AWS and other cloud services
- Experience with programming and scripting languages like Python, Peri, Bash, PHO, Java, Angular, SQL, Postgress, C++, or C#
- Strong knowledge of security scanning tools and practices.
- Excellent problem-solving and troubleshooting skills.
- Strong communication and collaboration abilities.
Responsibilities
- Implement and automate cloud-based security controls, governance processes and compliance validation. Supports application accreditation with requisite design and documentation.
- Designs, manages, and maintains a stable and efficient infrastructure to optimize service delivery across production, test and development environments in the cloud throughout the development lifecycle.
- Designs, builds and maintains a stable and efficient infrastructure to optimize service delivery across production, test and development environments in the cloud throughout the development lifecycle.
- Implement security scanning and vulnerability management processes.
- Manage and optimize GitHub repositories and workflows.
- Collaborate with software development and operations teams to integrate security practices.
- Troubleshoot and resolve issues related to pipeline automation and security.
- Ensure compliance with security policies and procedures.
Preferred Qualifications
- Master’s of Science degree
- Experience with end-to-end components of software tools
- Experience packaging for Windows Server and Linux distributions including automating software template generation, configuring environments and tools, and packaging for installation
- Experience designing and deploying frameworks with IT automation tools
- Experience with security frameworks and Risk Management Framework (RMF) process
- Experience with DoD Authority to Operate (ATO) processes
- 8570 IAT II compliant certification such as Security+
- Certified Information Systems Security Professional (CISSP)
- Experience with collection management and data flows
- Relevant certifications (e.g., AWS Certified DevOps Engineer, Certified Kubernetes Administrator).
- Knowledge of compliance frameworks and security standards.