Devsecops Engineer

We are seeking a DevSecOps Engineer who will support the agile development of innovative communications, networking, and computing solutions for U.S. defense agencies that improve the sharing of information among warfighters distributed throughout airborne, maritime, and ground environments. What you'll do:
•Provide leadership in the DevSecOps areas of Vulnerability Scanning, Certificate Management, Password Policy Management, and Data Analysis of security monitoring outputs
•Coordinate daily Security and Compliance efforts
•processes, leveraging various scripting languages and open source solutions.
•Work as a team throughout the design process, supporting sprint planning sessions, code reviews, and scrums
•Support the DevOps environment consisting of Jenkins and GitLab CI pipelines, SonarQube, Nexus, Ansible, Docker, RPM package management solutions, build tools, and code metrics
•Develop, maintain, and enforce the Software Development Process across projects
•Assist in developing an automated security framework for robust deployment tools and Develop software and the artifacts associated with software development
•Implement high level designs in robust maintainable software
•Create modules, install software on target nodes, and deploy configuration files
•Develop and implement test scripts
•Support functional and system level testing
•Work closely with the operational Project Management team to maintain successful development sprints and stay on schedule Requirements:
•B.S. in an engineering field (Computer, Software, Math, Physics, Electrical, etc.)
•4-7 years of experience in software development or DevSecOps
•2-3 years of hands on experience writing and deploying C 11 (or greater) for complex systems and processes
•Hands-on experience with Python, Bash, CMake, and Web (node.js/React)
•Experience integrating static code analysis, SAST, and code metrics tooling
•Familiarity with agile development process
•Ability to obtain US Secret clearance Nice to have:
•Basic understanding of Linux networking and network troubleshooting
•Experience building Docker containers using Dockerfiles and the GitLab Registry
•Experience with Ansible
•Experience with Kubernetes
•Experience with STIG compliance and security applications
•Experience with Virtual Machine Management - vCenter/vSphere/ESXi
•Solid Linux OS knowledge: CentOS/RHEL, RPM, UNIX build process
•Experience with Jenkins and Gitlab CI/CD