GDIT is looking for Senior DevSecOps Engineer/Developer to join our Cloud Engineering and Development team supporting the National Institute of of Allergy and Infectious Diseases (NIAID). You will work with a team of 15 other developers and engineers to design and build secure infrastructure solutions and business process automation for our PaaS and IaaS in AWS. A focus on shifting left with security and automating security best practices is essential.
You should have a strong understanding of AWS technologies, application, software services, DevSecOps tooling, and hands-on development experience.
We are looking for a highly motivated professional, self-starter, who embraces the DevSecOps culture, and can deliver with minimal guidance.
In this role, a typical day will include the following:
Writing code for custom compliance rules with AWS Config or AWS Service Control Policies to ensure compliance with NIH baselines, NIST cybersecurity frameworks, and FISMA guidelines.
Monitoring and responding to alerts for compliance violations, threats, and known vulnerabilities identified in logs such as VPC Flow Logs, DNS logs, and S3 bucket logs using AWS services such as Config, CloudTrail, CloudWatch, Security Hub and other COTS security products.
Collaborating with product and infrastructure owners to ensure systems are configured according to cybersecurity frameworks such as NIST in a cybersecurity user-friendly culture.
Recommend and implement solutions to meet security standards for our enterprise platform services and strategic custom products.
Using your knowledge of AWS, Terraform, and security best practices to build the infrastructure and tooling which underlies our custom AWS platform offerings.
Helping to define our cloud security requirements and audit configurations
Participating in a daily stand-up meeting to report your accomplishments, plans for the day, and any roadblocks you encountered.
Occasionally presenting to your team or our software developer colleagues, on DevSecOps best practices, new and interesting cloud technologies, and ways you approached and solved challenging technical issues during our Tech Talks webinar series.
WHAT YOU’LL NEED:
BA/BS or equivalent and 15 years related experience.
Minimum of five years experience with AWS to include working knowledge of commonly used AWS services, such as Lambda, IAM, VPC, S3, EC2, CloudWatch and CloudTrail, Route 53, and RDS.
Minimum of five years of hands-on experience deploying, configuring, and securing infrastructure in a large enterprise environment using AWS services, such as ACL’s, WAF, security groups, AWS Config, AWS Security Hub, AWS Firewall and AWS GuardDuty.
Experience developing, implementing, and operating security tools in the Cloud, including network firewalls, Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), anti-malware, vulnerability scanning, encryption, and Identity and Access Management (IAM)
Knowledge of cybersecurity processes and concepts, such as configuration management, threats, vulnerabilities, encryption, boundary defense, zero trust, auditing, authentication, and risk management.
Experience designing solutions and implementing technologies following NIST standards, such as SP 800-53, SP 800-190, and SP 500-291.
Hands-on experience with infrastructure-as-code tools such as Terraform or CloudFormation to include writing templates and modules from scratch.
Hands-on experience with scripting languages, such as Python or Bash.
Experience analyzing solutions components, understanding systems integration challenges, and identifying security risks in current components that must be resolved to reach future performance targets and functionality requirements in cloud infrastructure.
Ability to obtain and maintain a Public Trust security clearance level
Experience in designing and developing DevSecOps tools to automate the integration of security at every phase of the software development lifecycle, from initial design through integration, testing, deployment, and product delivery.
Experience using and managing Linux distributions includingRedHat or CentOS, and recent versions of Windows Server.
Experience with containers/Docker/Kubernetes and/or EKS
Experience with web technologies, such as Java, Python, Apache, Tomcat, Node.js, Angular.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.