DevSecOps Engineer

at  Fusion Innovation

JOB DESCRIPTION

Fusion Innovation’s recent growth has earned us a top spot in the Inc 5000 Fastest Growing Private Companies in America and in Washington Business Journal’s Best Places to Work multiple years in a row. Our team members are passionate about their work and are empowered to contribute their unique skills and perspectives to our projects. Here at Fusion, we put people first. When you join us, you don’t just join a company, you join a family. If you are ready to be part of a fun and engaging team where your innovative ideas are heard, supported, and make ever lasting mission impacts for our Nation’s most sensitive programs, you have come to the right place.

POSITION OVERVIEW

The Engineer will be a part of a cybersecurity compliance team procuring, building, developing, testing, deploying, and maintaining a secure, robust, and privacy-oriented internet environment. Sponsor is looking for a candidate with demonstrated senior-level Windows and Linux systems engineering and system administrative skills managing and maintaining enterprise systems such as Windows Domain Controllers (DC) and Hyper-V servers and Linux-based Bastion and IDS systems. Hands-on experience with configuring and implementing BSD Unix-based firewalls with secure Virtual Private Networks and rules to prevent network data leaks. Experience with automated deployment technologies such as CloudFormation, Ansible, Terraform, and Git. The position supports the full lifecycle of the compliance program including orchestrating the program’s Plan of Action & Milestones (POAM), participating in configuration management review boards to assess specialized CONOPS from a cybersecurity and systems engineering perspective, drafting and shepherding architecture designs through the Sponsor’s Assessment & Authorization (A&A) process; procure, configure, and test site-specific architectures; organize, train, and equip the Sponsor for distributed operations and maintenance.

Duties:

• Assist sponsor with site surveys for infrastructure changes needed to install and upgrade accredited internet systems.
• Survey sites for resource and infrastructure changes needed to install security approved and accredited internet systems.
• Serving as an IT Specialist performing Information Security (INFOSEC) and Security System Management duties such as and not limited to vulnerability scanning and A&A documentation.
• Solid Windows and Linux administration and engineering with experience implementing complex security-based DC GPOs and Linux-based zero-trust architecture services.
• Hands-on experience with developing and implementing cloud-based Continuous Integration/Continuous Development (CI/CD) and Infrastructure as Code for automated pipelines using tools like Ansible, Terraform, PowerShell, Git, etc.
• Develop innovative solutions and coordinate those solutions between members of the technical and operational staff at a government sites and end-users in the field.
• Setup, configure and maintain various EC2 environments to support development, test, integration, and operational systems.
• Evaluate, recommend, and implement automated test tools and strategies.
• Work with Sponsor to procure, receive, and stage system equipment.
• Develop, test, and deploy remote access system components providing audit and remote management capabilities.
• Develop and refine IDS signatures to reduce false positives and establish effective review of IDS alerts and elevate to Cyber Incident Response Team (CIRT).
• Coordinate shipping system components.
• Provide remote installation and troubleshooting support.
• For support, routine travel within the WMA on an as-needed basis.

,

REQUIRED SKILLS

• Active Top Secret/SCI with Polygraph
• BS in a related discipline and 8+ years of experience or MS and 6+ years; an additional four years of experience may be considered in lieu of degree.
• Ability to work in a team environment and independently identify and resolve challenges.
• Excellent oral and written communication and interpersonal skills and the ability to work independently and on a team.
• Outstanding attention to detail, prioritization, and multitasking.
• Strong personal network with components capable of providing remote facilitation.
• Self-starter with robust problem-solving skills.
• Experience with Snort IDS, Zeek, and Cisco IOS.

• Assist sponsor with site surveys for infrastructure changes needed to install and upgrade accredited internet systems.
• Survey sites for resource and infrastructure changes needed to install security approved and accredited internet systems.
• Serving as an IT Specialist performing Information Security (INFOSEC) and Security System Management duties such as and not limited to vulnerability scanning and A&A documentation.
• Solid Windows and Linux administration and engineering with experience implementing complex security-based DC GPOs and Linux-based zero-trust architecture services.
• Hands-on experience with developing and implementing cloud-based Continuous Integration/Continuous Development (CI/CD) and Infrastructure as Code for automated pipelines using tools like Ansible, Terraform, PowerShell, Git, etc.
• Develop innovative solutions and coordinate those solutions between members of the technical and operational staff at a government sites and end-users in the field.
• Setup, configure and maintain various EC2 environments to support development, test, integration, and operational systems.
• Evaluate, recommend, and implement automated test tools and strategies.
• Work with Sponsor to procure, receive, and stage system equipment.
• Develop, test, and deploy remote access system components providing audit and remote management capabilities.
• Develop and refine IDS signatures to reduce false positives and establish effective review of IDS alerts and elevate to Cyber Incident Response Team (CIRT).
• Coordinate shipping system components.
• Provide remote installation and troubleshooting support.
• For support, routine travel within the WMA on an as-needed basis