-
ID
#17803984 -
Job type
Permanent -
Salary
Depends on Experience -
Source
Favor TechConsulting, LLC -
Date
2021-07-27 -
Deadline
2021-09-25
DevSecOps Manager
Virginia, Vienna, 22182 Vienna USAPermanent
Vacancy expired!
- Provide leadership to the DevSecOps practice within our firm by bringing varied and advanced industry experience and knowledge of the latest technologies, processes, and trends around Cloud infrastructure, IaaS, SaaS, and CI/CD practices and tools.
- Assess current capabilities and build out and bolster our corporate DevSecOps capabilities and practices to aid current contracts and better position our firm for new opportunities.
- Support and advise AppDev teams as needed to improve and optimize Infrastructure and Application builds and release pipelines using the CI/CD practices and tools. Assist teams as needed to enhance their pipelines such as incorporating automated change and release management requirements.
- Support, advise, and integrate with corporate Business Development and Operations teams to aid with organic growth and new opportunities. Support solutions group for proposal writing, and also lead and actively participate on Government-issued tech challenges required for new opportunities.
- Act as senior AppDev manager when needed to dive into project work and aid with problematic programs with insufficient DevSecOps processes, assess gaps and/or customer issues, and identify and implement corrective action.
- Experience leading large scale Federal agile and DevSecOps programs.
- Exceptional customer management skills and client-facing and internal communication skills
- Extensive Cloud services knowledge: AWS, Microsoft Azure
- Experience building Infrastructure and Application build and release pipelines using the CI/CD tooling platforms, and developing automated change and release management requirements.
- Significant experience with implementing foundational Agile development principles and practices within App Dev programs and organizations.
- Experience supporting BD and solutioning teams in support of new and organic growth opportunities, to include proposal writing and solutioning, and leading Government-sponsored tech challenges.
- Bring a culture of continuous improvement and security focus to development practices.
- Provide expertise and best practices for implementing cloud security (internal) and product security (external)
- Assess architectures and designs for security vulnerabilities and suggest and implement proper alternatives
- Oversee the management and remediation of identified security flaws within our development platforms
- Build and maintain monitoring, auditing, and reporting frameworks that produces artifacts that support security and compliance needs
- Build and maintain a set of tools that enable developers to self-serve for most operational tasks
- Develop processes that produce artifacts that support security and compliance requirements
- Support business development activities through participation and leadership roles in coding challenges / hackathons, and development of content for proposals
- Excellent written, verbal, and meeting facilitation skills
- Background as a Software Engineer, Site Reliability Engineer, or DevOps Engineer for at least three years
- Intermediate level knowledge of principles, theories, and concepts of Cybersecurity typically obtained through advanced education combined with experience.
- Background in supporting a 24x7x365 Software based System
- Background in supporting Incident Management for a software-based system.
- Background in supporting a team running a trouble ticket system.
- Background in supporting an operations team
- Demonstrated success using modern DevSecOps methods and tools including automated testing tools and monitoring tools.
- Demonstrated ability to drive frequent release cycles (daily / weekly)
- Demonstrated knowledge and use of modern software development and DevSecOps tools with focus on AWS of Azure DevSeOps suite and implementation of automated pipelines in a cloud environment
- Demonstrated successful release/delivery management on large-scale deployments
- Demonstrated knowledge of security best practices for client-server and web based application product architectures, focusing predominantly on cloud-based server development
- Demonstrated knowledge of AWS systems, including EC2, IAM, CloudWatch, CloudTrail, Config, Lambda, Security Groups, VPCs, WAF, Guard Duty, Inspector, etc.
- Demonstrated programming or scripting experience with a popular modern language utilized by above tools (Java, JavaScript, Python, Ruby, etc.)
- Extensive shell scripting experience on Unix/Linux and Windows platforms
- Demonstrated ability using multiple IDEs like Eclipse and visual studio
- Demonstrated knowledge of Logging & Monitoring tools: ELK, Grafana, DataDog, Prometheus
- Demonstrated Eexperience in developing integration APIs and webservices (REST/SOAP), API Development Experience, Knowledge of API Security
- Demonstrated experience with IAM Solutions: AWS Cognito, PingFederate, WSO2, Azure AD, VDS, SailPoint, CyberArk
- Demonstrated experience with authentication and authorization paradigms - SAML2/OIDC, LDAP, Kerberos
- Demonstrated experience with secure software development practices - AppSec - Security and/or regulatory experience desired, OWASP 10 and Web Application Security
- Experience with Threat modeling, risk assessment techniques, code reviews, and with the latest security best practices
- Demonstrated experience with automated security tools for SAST, SCA, DAST, IAST governance and scanning
- Experience with cloud-based security management/IDS/IPS/SIEM tools, such as Splunk, Dome9, AlienVault, AlertLogic, Fortinet, Threat Stack, etc.
- Life-long learner - always looking to stay up to date with latest attack vectors, vulnerabilities, remediation, and protection paradigms, etc.
- DoD Secret level clearance
- ITIL and Change Management
- Experience in SAFe Agile programs and methodology
- Prior consulting and client management experience
- PMI Agile Certified Practitioner (PMI-ACP)
- APMG International Agile Project Management (AgilePM)
- Scrum Alliance Certified Product Owner (CPO)
- Scrum Alliance Certified Enterprise Coach (CEC)
- org Professional Scrum Master (PSM)
- SAFe Scaled Agilist (SA) or similar
- DAC Certified Disciplined Agilist (CDA)
- AWS/Azure Cloud
- Kubernetes
- Keycloak
- Ability to perform work on a computer in a largely telework environment
Vacancy expired!
Report job