DevSecOps Engineer with Security Clearance - San Antonio, TX, United States - Metronome LLC

Description

Development, Security & Operations (DevSecOps) Engineer specializing in designing and implementing Continuous Integration/Continuous Deployment (CI/CD) solutions in on-premises, air-gapped systems for supporting the development of conventional and cloud-native applications
Essential Duties and Responsibilities Design git-based CI/CD pipelines for conventional and containerized applications
Integrate automated unit tests, SAST, DAST, and vulnerability scans into software development pipelines
Design and deploy customized, air-gapped Kubernetes clusters on VMWare ESXI systems using containers published at the DOD Platform One Iron Bank container registry
Offload software build components onto Kubernetes systems
Raise level of software functional organization proficiency in DevSecOps, CI/CD, Agile Methods, and containerization
Automate infrastructure deployments with Ansible and Terraform
Create and delegate tasks as an Agile Scrum product owner while mentoring software engineers towards supporting program goals
Draft technical documentation, user guides, and high-level process flows for stake holders

Required Skills:
Bachelor's degree and 3-6 years of relevant experience that includes:
Experience with cloud systems and architectures (Amazon AWS, Google Cloud or Microsoft Azure)
Experience developing software with Java, Spring framework, JBoss, Python, JavaScript, , and/or Angular
Experience developing Infrastructure as Code (IaC) and Configuration as Code (CaC) using tools like Packer, Terraform, and Ansible
Familiar with microservice architectures (REST, JMS, AMQP)
Familiarity with Linux and scripting (Bash and Python, etc)
Ability to work on high performing teams supporting multiple projects and personnel
Strong oral and written communication skills
Proven experience with cloud systems and architectures (Amazon AWS, Google Cloud or Microsoft Azure)
Extensive experience developing Infrastructure as Code (IaC) and Configuration as Code (CaC) using tools like Jenkins, Packer, Terraform, and Ansible
A passion for building and maintaining CI/CD pipelines for multiple product teams
Development experience with Kubernetes, Docker, and Helm
Experience configuring and using CI/CD automated pipelines, such as Jenkins
Strong Bash and Python coding skills Active Secret Clearance Desired Skills (Optional): Active Top Secret Clearance
CompTIA Security+
Experience with Istio
RHCSA/CNCF CKA certifications
Experience with DISA Iron Bank CI/CD pipeline and methods.
Experience building software conforming to cybersecurity requirements under the Risk Management Framework or similar constructs
Provisioning HA vanilla Kubernetes or Rancher Kubernetes systems on air-gapped networks
Firm understanding of Kubernetes secrets, service accounts, and RBAC controls

Experience integrating Kubernetes components:
kube-vip or metalLB, cert-manager, Nginx, ArgoCD, and external-dns
Infrastructure-as-Code development with Ansible and Terraform Designing CI/CD pipelines with Jenkins and GitLab, Coverity, TwistLock, Trivy, Docker, Kaniko, and Kubernetes
Experience with administrating GoHarbor and Artifactory build artifact registries
Hardening servers and Kubernetes clusters to DISA standards
Administrating virtual servers and networks in VMWare vSphere
Improving existing processes or establishing new systems requiring significant conceptualizing, reasoning, and interpretation