Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
Senior DevSecOps Engineer - Cloud at Bowhead
Arlington, VA 22204, USA -
Full Time

Start Date

Immediate

Expiry Date

02 Nov, 25

Salary

0.0

Posted On

02 Aug, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Security Tools, Nessus, Sscp, Dawia, Cae, Qualys, Jenkins, Docker, Security Automation, Microservices, Scripting Languages, Python, Information Systems, Information Technology, Bash, Powershell, Computer Science, Data Science, Fortify, Sonarqube

Industry

Information Technology/IT

Description

PREFERRED QUALIFICATIONS:

  • Master’s degree in relevant field
  • Cloud certifications (AWS Solutions Architect, Azure Solutions Architect, GCP Professional Cloud Architect)
  • Experience with legacy DoD systems migration
  • Knowledge of microservices architecture patterns
  • Experience with service mesh technologies (Istio, Linkerd)
  • DAWIA PM Practitioner certification

CERTIFICATION REQUIREMENTS:

Required: DoD 8570 IAT Level II or III certification
Desired: GIAC Security Essentials (GSEC), FITSP-D, GIAC Cloud Security Automation (GCSA), GIAC Information Security Fundamentals (GISF), (ISC)2 Systems Security Certified Practitioner (SSCP), CompTIA Security+

Physical Demands:

  • Must be able to lift 25 pounds on occasion.
  • Must be able to stand and walk for prolonged period amounts of time.
  • Must be able to twist, bend, and squat periodically.

SECURITY CLEARANCE REQUIREMENTS: Must be able to maintain a security clearance at the Top Secret level with SCI eligibility and maintain SAP eligibility. Due to work requirements, this position will not entertain work from home capabilities. US Citizenship is a requirement for this contract.

LI-KC
Responsibilities
  • Design and implement CI/CD pipelines incorporating security controls for cloud environments (AWS GovCloud, Azure Government, Google Cloud for Government)
  • Develop and maintain Infrastructure as Code (IaC) using tools such as Terraform, CloudFormation, and Ansible
  • Implement automated security scanning and vulnerability assessment tools within deployment pipelines
  • Establish container security practices for Docker and Kubernetes environments
  • Ensure compliance with DoD security frameworks including NIST 800-53, FISMA, and FedRAMP
  • Collaborate with development teams to implement security best practices throughout the software development lifecycle
  • Monitor and respond to security incidents in cloud environments
  • Maintain documentation for security procedures and compliance requirements
  • Provide technical guidance on secure cloud architecture patterns
  • Lead security assessments and Authority to Operate (ATO) processes
  • Interface with the customer and external stakeholders in working groups, technical exchange meetings, and other forums
  • Chair/co-chair meetings and working groups on behalf of government representatives as directed
  • Resolve problems, allocate resources, manage personnel, and monitor performance to meet contract requirements
  • Provide daily control and supervision of employees as assigned
  • Provide planned replacement information at least 15 calendar days prior to replacement
  • Provide information within 24 hours of an unplanned replacement
  • Other duties as assigne