Development, Security & Operations (DevSecOps) Engineer specializing in designing and implementing Continuous Integration/Continuous Deployment (CI/CD) solutions in on-premises, air-gapped systems for supporting the development of conventional and cloud-native applications

Essential Duties and Responsibilities

• Design git-based CI/CD pipelines for conventional and containerized applications
• Integrate automated unit tests, SAST, DAST, and vulnerability scans into software development pipelines
• Design and deploy customized, air-gapped Kubernetes clusters on VMWare ESXI systems using containers published at the DOD Platform One Iron Bank container registry
• Offload software build components onto Kubernetes systems
• Raise level of software functional organization proficiency in DevSecOps, CI/CD, Agile Methods, and containerization
• Automate infrastructure deployments with Ansible and Terraform
• Create and delegate tasks as an Agile Scrum product owner while mentoring software engineers towards supporting program goals
• Draft technical documentation, user guides, and high-level process flows for stake holders

• Experience with cloud systems and architectures (Amazon AWS, Google Cloud or Microsoft Azure)
• Experience developing software with Java, Spring framework, JBoss, Python, JavaScript, node.js, and/or Angular
• Experience developing Infrastructure as Code (IaC) and Configuration as Code (CaC) using tools like Packer, Terraform, and Ansible
• Familiar with microservice architectures (REST, JMS, AMQP)
• Familiarity with Linux and scripting (Bash and Python, etc)
• Ability to work on high performing teams supporting multiple projects and personnel
• Strong oral and written communication skills
• Proven experience with cloud systems and architectures (Amazon AWS, Google Cloud or Microsoft Azure)
• Extensive experience developing Infrastructure as Code (IaC) and Configuration as Code (CaC) using tools like Jenkins, Packer, Terraform, and Ansible
• A passion for building and maintaining CI/CD pipelines for multiple product teams
• Development experience with Kubernetes, Docker, and Helm
• Experience configuring and using CI/CD automated pipelines, such as Jenkins
• Strong Bash and Python coding skills

• Active Clearance
• CompTIA Security+
• Experience with Istio
• RHCSA/CNCF CKA certifications
• Experience with DISA Iron Bank CI/CD pipeline and methods.
• Experience building software conforming to cybersecurity requirements under the Risk Management Framework or similar constructs
• Provisioning HA vanilla Kubernetes or Rancher Kubernetes systems on air-gapped networks
• Firm understanding of Kubernetes secrets, service accounts, and RBAC controls
• Experience integrating Kubernetes components: kube-vip or metalLB, cert-manager, Nginx, ArgoCD, and external-dns
• Infrastructure-as-Code development with Ansible and Terraform Designing CI/CD pipelines with Jenkins and GitLab, Coverity, TwistLock, Trivy, Docker, Kaniko, and Kubernetes
• Experience with administrating GoHarbor and Artifactory build artifact registries
• Hardening servers and Kubernetes clusters to DISA standards
• Administrating virtual servers and networks in VMWare vSphere
• Improving existing processes or establishing new systems requiring significant conceptualizing, reasoning, and interpretation