Sr Software Engineer - DevSecOps/Cyber focus
$106,250 - $143,750/Yr
GD Information Technology, Inc. - Rockville, MD
posted 2 months ago
Full-time - Mid Level
Remote - Rockville, MD
10,001+ employees
About the position
The Senior Software Engineer - DevSecOps/Cyber focus is responsible for ensuring that the engineering team's processes maintain the security integrity of products. This role involves designing, deploying, operating, and maintaining secure cloud products and services, enabling development teams to efficiently deliver features. The engineer will lead a team in developing and supporting web applications while ensuring compliance with security policies and conducting system audits.
Responsibilities
- Works with a team of developers, data engineers, and data scientists to create web applications to collect and manage data in support of Internet and social media activities
- Participates in Agile project management methodologies to support all aspects of the software development lifecycle (SDLC)
- Works within a team environment using Confluence, Jira, and Slack to manage, assign, and collaborate on work tasks
- Develops web applications in Ruby on Rails or Django/Python on Linux and deployed in AWS using MySQL and RedShift databases
- Reviews projects' ability to deliver robust and scalable solutions, learning and incorporating new technologies as appropriate
- Supports database engineering by providing Python support using AWS Lambda
- Builds and operates scalable and secure systems on AWS
- Develops, implements, communicates, and enforces security policies or plans for data, software applications, hardware, telecommunications, and information systems
- Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring and reporting
- Performs periodic and on-demand system audits and vulnerability assessments to verify systems are being operated securely and information systems security policies and procedures are being implemented as defined in security plans, including user accounts, application access, file system, and external web applications
- Reviews code for security and compliance with coding standards
- Safeguards the network against unauthorized infiltration, modification, destruction, or disclosure
- Assists with implementation of countermeasures or mitigating controls
- Conducts investigations of information systems security violations and incidents, reporting as necessary to management
- Monitors and analyzes Intrusion Detection Systems (IDS) to identify security issues for remediation; recognizes potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information
- Prepares incident reports
- Ensures compliance with regulations and privacy laws
- Responsible for DevSecOps of project applications supporting the customer
- May coach and provide guidance to less-experienced professionals
- May serve as a team or task lead
Requirements
- EDUCATION: BA/BS in Computer Science or related field
- EXPERIENCE: 5+ years of relevant experience
- CLEARANCE: Must be able to obtain Secret Clearance; current DoD Secret clearance preferred
Benefits
- Medical plan options, some with Health Savings Accounts
- Dental plan options
- Vision plan
- 401(k) plan with company match
- Flexible work weeks
- Paid time off plans including vacation, sick and personal time, holidays, paid parental, military, bereavement, and jury duty leave
- Short and long-term disability benefits
- Life, accidental death and dismemberment, personal accident, critical illness, and business travel and accident insurance
