Cloud DevSecOps Engineer Job Listing at SAIC in REMOTE WORK, VA (Job ID 2414646)

Description

Description

Introduction

SAIC is proud to be supporting DCSA in safeguarding our nation's information. DCSA is the designated oversight authority on the accreditation of classified facilities, information systems, and the insider threat program. This involves security oversight of more than 10,000 companies and approximately 13,000 facilities involved in classified work throughout the DoD and 31 Federal agencies. 

Job Description

• As technical expert with complete latitude in day-to-day decision-making, provide cloud and DevSecOps engineering expertise to the systems engineering efforts to investigate, analyze, plan, design, build, test, and deploy technology solutions to enhance and optimize a transformation infrastructure program within the DoD. The primary focus is to develop and build scalable, automated DevSecOps infrastructure, enabling continuous integration and continuous deployment (CI/CD) pipelines and enhancing the customer's capabilities to accelerate secure application development in cloud environments.
• Support planning, design and development of FedRAMP authorized cloud-based capabilities tailored to DevSecOps principles for customer-directed initiatives, ensuring a security-first approach throughout the development lifecycle.
• Coordinates with and provides expertise to third-party vendors and Original Equipment Manufacturers (OEMs) to integrate DevSecOps tools, processes, and technology that align with reengineered designs. Offer recommendations on cloud strategies, tool selection for CI/CD, and technology stacks to improve automation, monitoring, and overall security.
• Supports analysis of system needs with a focus on automation, security, and scalability to ensure future-proofed performance expectations, integration limitations, and organizational goals.
• Design and optimize cloud-based DevSecOps pipelines, working closely with architects to build configurations of hardware, software, network security, and cloud services that support secure and efficient CI/CD processes. 
• Develop and maintain functional design specifications and project plans. Deploy, test, and debug DevSecOps pipeline automation components, ensuring best practices in secure coding, containerization, automated testing, and security compliance. 
• Develops integrated system test requirements, documentation, and strategies for end-to-end testing across CI/CD environments.
• Designs and implements backup procedures and monitor pipeline performance to identify areas for further automation and optimizations.
• Monitors the consumption of cloud resources, fulfillment turnaround, application performance, and overall system security to maintain a high-performance, secure DevSecOps environment.

Qualifications

Required Qualifications

It is required that the Cloud DevSecOps Engineer have the following qualifications:

• BA/BS degree
• Nine (9) or more years of related experience.  Additional years of experience may be considered in lieu of a degree.
• Secret clearance with ability to obtain a Top Secret
• Must meet Information Assurance requirements in accordance with DoD 8140 (Security+, CISSP, etc.)
• AWS and/or Azure certification, with familiarity in enterprise cloud and DevSecOps tools and practices (e.g. GitLab, Kubernetes, Terraform, Ansible).

Desired qualifications

• MA/MS
• Seven (7) or more years of experience.
• TS/SCI
• Experience in implementing secure CI/CD pipelines, container orchestration (e.g., Kubernetes), and infrastructure as code in cloud environments.
• GitLab for source code management (SCM), version control, and CI/CD pipelines or equivalent (e.g., GitHub).
• Static Application Security Testing (SAST) tooling such as SonarQube, Checkmarx, or equivalent.
• Software Composition Analysis (SCA) tooling such as Anchore, Trivy, Syft, Grype or equivalent.
• Nessus / Tenable.io.
• Container orchestration tools (Kubernetes, Rancher, OpenShift).
• Infrastructure and Configuration as code (Terraform, Ansible, domain-specific languages).
• Open Policy Agent for policy enforcement.
• Artifactory for storing and managing application binaries and dependencies.

Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

 Apply on company website