Senior DevSecOps Engineer

Rapid Strategy is seeking a Senior DevSecOps Engineer to join our team.

The Senior DevSecOps Engineer will be responsible for automating, developing, and executing DevSecOps best-practices, providing solution architectures, and strategy for DevSecOps adoption. You will have the opportunity to design and create highly automated, self-service products and blueprints to help meet mission-critical objectives utilizing CI/CD, automation, and a variety of different AWS cloud services.

Location: This position is eligible for fully remote work.  The selected candidate must be currently located in a state supported by Rapid Strategy (AL, DC, FL, IL, LA, MD, MI, MN, MS, NJ, NC, PA, TN, TX, or VA). Some essential travel is required to gain and maintain access to the customer's IT systems.

The successful candidate will be accountable to: 

• Augment, document and support AWS hybrid-cloud infrastructure, using leading-edge technologies
• Augment, document and support CI/CD strategy for management of application code
• Identify requirements, develop, document, and implement strategy to support change management requirements while automating as much of the deployment process as practical in the CI/CD pipeline (i.e., Jenkins, AWS CodeSuite, SonarQube, SmartBear Collaborator and SwaggerHub, Katalon, JMeter, OWASP
• Work with Scrum Masters, Business Analysts, and Developers to facilitate the flow of continuous development through a secure, stable pipeline
• Ensure continuous code quality measures and development team efficiency by working closely with the technical lead to prioritize issues and guide the team through modern DevSecOps practices
• Maintain and ensure continuous compliance of AWS hybrid-cloud infrastructure as well as virtual server instance golden image pipelines against cybersecurity frameworks such as FedRAMP, NIST 800-53, NIST CSF, AWS Foundational Security Best Practices and CIS Benchmarks
• Support and develop new and innovative automated solutions
  

Experience, Education & Training:  

• Bachelor’s Degree in Computer Science, Engineering, or 5+ years of relevant work experience 
• 5+ years of hands-on experience with public-cloud providers such as AWS, Azure or GCP, as well as configuration management tools like Puppet, Chef, Ansible or AWS Systems Manager
• 3+ years of experience with Linux and Windows Server administration and Shell automation
• A deep understanding of basic networking concepts, to include TCP/IP, routing, firewalls and transit network deployments
• Expert level AWS experience utilizing services such as EC2, S3, RDS, VPC, Route53, CodeBuild/Deploy/Pipeline, CloudWatch, Config, Systems Manager, IAM, CloudFormation, Transit Gateway
• Knowledge of secure coding practices and the ability to conduct security assessments and analyses (e.g., Identity Access Management, Firewalling, Vulnerability Scanning) in every part of the development process and automating core security tasks by embedding security controls and processes in the DevSecOps workflow
• Serving as a senior member of the team supporting the installation, optimization, integration, troubleshooting, backup, recovery, modification, security, and upgrading of IT systems and components
• Experience with branching strategies in Git and experience creating jobs and pipelines in CI/CD tools like Jenkins, Bamboo or CircleCI
• Experience working in Agile environments and applying automation techniques with multiple teams operating in parallel to accomplish large initiative deployments
• Experience working with Tomcat, JBoss or other application servers

Preferred Qualifications: 

• Experience in managing products or services in Cloud platforms and/or SaaS at scale
• A development background with an object-oriented programming language such as Java and an understanding of JVM 
• A deep understanding of DevSecOps as a cultural shift of integration and efficiency improvements
• Experience working with Terraform, JIRA, Ansible, other Atlassian tools, Packer, Apache Solr (or similar tooling) and automating build and deployment pipelines using Jenkins, CloudFormation and/or Docker, SonarQube, etc.
• Understanding of various deployment approaches such as Blue-Green deployments

Clearance Requirements:

Applicants selected may be subject to a government security investigation and must meet eligibility requirements for potential access to classified information. Accordingly, US Citizenship or Green Card is required.