The Judge Group - Boulder, CO
posted about 1 month ago
Full-time - Mid Level
Boulder, CO
Administrative and Support Services
About the position
The DevSecOps Engineer will support Security Administration efforts within the Ground Infrastructure Team, focusing on integrating security practices into the DevOps process. This role involves working closely with a small, high-performing Product Team and requires a strong understanding of security protocols and tools, as well as the ability to lead technical teams and communicate effectively with stakeholders.
Responsibilities
- Integrate into a small, high-performing Product Team led by a Scrum Master and Product Owner.
- Support daily Scrum Meetings, Team Demos, and monthly Staff Calls.
- Plan and execute STIGs, automation development, vulnerability management, and security tool implementation in accordance with RMF controls.
- Work under very general supervision in support of larger team goals.
- Support ad hoc tasking and stretch assignments as outlined by Program Technical Leaders.
- Pursue continuous improvement relentlessly.
- Interpret complex system requirements.
- Collaborate with a technical team of System Administrators, DevSecOps engineers, and software and integration engineers to integrate, test, and deploy complex systems.
Requirements
- Must be a U.S. Citizen and hold an active DOD secret security clearance.
- Proficiency with Microsoft Office products.
- CompTIA Security+ Certification.
- Great interpersonal skills and demonstrated effective communication in a team environment.
- Ability to lead technical teams as the prime technical contact, interacting with senior external personnel on significant technical matters.
- Experience working in a Linux environment.
- Experience with developing Cyber Integration Objectives.
- Experience conducting and leading cyber risk & vulnerability assessments.
- Experience planning, designing, developing, validating, and verifying Cyber solutions across the lifecycle.
- Knowledge of security & risk management, security architecture & engineering, communication/network security, SW development security, and security assessment & testing.
- Experience with cyber tools such as Splunk.
- Experience developing, deploying, and supporting AWS and Cloud-based systems.
- Experience in a DevOps role working CI/CD pipeline integration.
- Experience developing maintainable Infrastructure as Code (IaC).
- Experience working with multiple development teams and integrating product environments.
- Experience with RedHat OpenShift and VMWare Cloud Foundation.
- Familiarity with CI/CD tools such as Jenkins, GitLab CI, etc.
- Experience with Ansible/Ansible Tower.
- Experience with tools such as Prometheus, Grafana, Terraform, Selenium, Sikuli, Chef, Puppet, etc.
- Experience with Agile processes.
- Experience with Atlassian products (Confluence, Jira & Zephyr).
- Experience with security classification guidelines.
