DevSecOps Security Technical Analyst Advisor (Secret required) - Roy, UT

We are GDIT. We stay at the forefront of innovation to solve complex technical challenges.  General Dynamics Information Technology is seeking a DevOpsSec Security Technical Analyst Advisor with Cloud experience who holds active secret clearance. Hybrid though partially onsite location: Roy, Utah

The position will support a US Air Force program that is playing a major role in strengthening and modernizing America's Strategic Deterrent Force. GDIT will develop and deliver a digital engineering design solution that enables and integrates the program’s complete set of data, tools, and model-based systems engineering (MBSE) activities, and makes them available to internal and appropriate external engineering and programmatic stakeholders throughout the program’s lifecycle.

This effort will culminate in an abstracted, highly transportable environment delivered to the Government, to be instantiated “virtually” on the Government’s network infrastructure, and updated during the Engineering and Manufacturing Development (EMD) phase of weapon system development.

For this effort, GDIT will use cloud based concepts including IaaS (Infrastructure as a Service); PaaS (Platform as a Service); and SaaS (Software as a service) and containerization concepts including Terraform and Docker to buildout the DEE. Together, the application of these concepts will result in a Software-Defined Data Center (SDDC).

MAJOR RESPONSIBLITIES AND DUTIES:

• Working daily with Development teams to integrate dependencies and backend components via automated pipelines

• Educating teams on adoption of DevSecOps Security practices and tooling, and supporting those practices and tools

• Creating, managing, and maintaining Pipelines, Data Integrations, and Infrastructure as Code (IaC) for our CI/CD pipelines and associated project-based deployments

• Assisting teams with DevSecOps issues related to performance, configuration, or otherwise

• Identifying and implementing improvements to how we securely build, deploy and monitor software projects 

• Helping create cloud infrastructure in a cost-efficient manner

REQUIRED EXPERIENCE/SKILLS:

• US Citizen

• BA/BS Degree (or equivalent experience)

• 2+ years of Security/DevOps/Cloud (AWS) experience

• Experience with Kubernetes 

• Experience with PKI, mTLS

• Experience with Security Scanning Tools: Anchore, OSCAP, Twistlock (preferred tools)

• Experience with creating software packages for RMF approval

• Experience with Static Code Quality Scanning Tools: SonarQube (preferred tools)

• Experience patching containers and operating systems for vulnerabilities – CVEs and Compliance

• Experience with Software Engineering and Continuous Delivery and/or DevOps related practices

• Experience with Git version control

• Experience with Docker, containerization build technologies, and container registries

• Experience with Gitlab and GitLab CI/CD Pipelines

• Experience with Ansible or shell scripting

• Experience using Linux/Unix (CentOS or RedHat preferred)

• Must be detail oriented, critical thinker, possess excellent problem-solving skills

• Desire for continuous improvement and a commitment to best practices

• Possess effective communication skills, especially in a team setting

• Familiarity with government standards for security, identity, and data management, such as NIST

• Performs assessments of systems and networks within the network environment or enclave. Plans, prepares, and executes tests of systems to evaluate results against specifications and requirements, and measures effectiveness of defense-in-depth architecture against known vulnerabilities.

• Security+ Certification

• Active DoD Secret Clearance

DESIRED EXPERIENCE/SKILLS:

• Experience with Nexus,  Packer, Container Registries, and Ansible

• Knowledge of secure development practices

• Kubernetes Policy Enforcement and Security

• Stays current with related technology and practices

• Ability to handle a dynamic work environment

• Effective organization and time management skills

• Desire for continuous learning

Security Clearance:

• Active Secret clearance

• Ability to secure and maintain a TOP SECRET security clearance

Travel:

• Possible travel approximately less than 20%

• Travel to and from a secured environment or program meeting may be needed

Work Location:

• Will need to be partial onsite in Roy, Utah

• Hybrid
   

WHAT GDIT CAN OFFER YOU:

• Full-flex work week

• 401K with company match

• Internal mobility team dedicated to helping you own your career

• Collaborative teams of highly motivated critical thinkers and innovators

• Ability to make a real impact on the world around you

#DEE2020 #kmp #Defense #USAF #cjobs #dicepost #gdpost #cloud #cybersecurity #sranalyst #advisor #AFOpportunities #DEEOPEN8022022 #gditcareers #DEEjobs