Job ID 2414808-2907
Location REMOTE WORK, CA, US
Date Posted 2024-12-04
Category Software
Subcategory SW Engineer
Schedule Full-time
Shift Day Job
Travel Yes, 10 % of the Time
Minimum Clearance Required Secret
Clearance Level Must Be Able to Obtain Top Secret
Potential for Remote Work No
Description
SAIC is seeking a Senior DevSecOps Engineer to join our team in support of the Battlespace Management Command, Control, and Communications (BMC3) Program.
This position requires technical engineering experience, with a demonstrated understanding and application of systems engineering and configuration management principals and process, mission planning/scheduling along with experience in systems engineering and sustainment of existing baseline. The successful candidate will be effective at face-to-face interaction with customers and other contractors to respond to requests for information, support to technical meetings, technical interchanges and enterprise working groups. The candidate must be able to work independently and represent the program and SAIC at meetings and working groups with government and associate contractors.
Responsibilities Include, But Are Not Limited To
- Build and maintain infrastructure as code on large scale multi-site deployments.
- Design, deploy, and manage containerized applications using Kubernetes.
- Design & architect CI/CD pipelines and workflows in accordance with standardized toolchain and frameworks.
- Onboard product teams to CI/CD framework simplifying the developer experience, promoting standards & methodologies.
- Implement and automate cloud-based security controls, governance processes and compliance validation.
- Day to day sustainment & support of the installed Battlespace Management Command, Control, and Communications (BMC3) System baseline.
- Support STIG implementation to DoD cyber standards.
- Provide technical expertise and support to mitigate risks for our Role Based Access Control (RBAC) Systems.
- Assist with capturing site variances to incorporate into the CM process, data migration (as required), application tuning, domain policies, applying security patches, submitting/closing trouble tickets (as required) and configuring the baseline to minimize downtime.
- Attend technical exchange meetings, engineering and integration meetings, post installation follow-up meetings.
- Submit recommended changes to configuration management (CM) personnel.
- Work alongside DevSecOps engineers and Cybersecurity engineers to determine and implement cyber best practices to cloud-based infrastructure using Infrastructure as Code (IaC) and automation practices.
- Completion of all applicable fielding prerequisites and post install releases (Critical System Updates (CSUs), Fast Tracks (FT), Out of Cycles (OOC), and Agile Release Events (AREs) by applicable deadlines.
- Assist in new hire and new developer onboarding into RBAC systems as required by the program.
- Work in air-gapped environments to create and maintain RBAC strategies for the Application Factory (AppFac) product.
Qualifications
Bachelor’s degree and 5+ years of experience as a DevSecOps or comparable technical function. Experience and industry certifications will be considered in lieu of education requirements.
U.S. Citizenship required.
- Active Secret security clearance.
- Current IAT Level 2 Certification (Sec+ or higher).
Experience, Knowledge, And/or Skills
- Cluster Management Deploy, configure, and manage Kubernetes clusters in AWS GovCloud environment (Istio is a plus).
- Monitoring & Logging Implement and manage monitoring, logging, and alerting for Kubernetes clusters using tools like Splunk, Prometheus, Grafana, and ELK stack.
- Familiarity with DISA STIG compliance.
- Knowledge of systems engineering roles and functions, including requirements management, functional analysis, configuration management processes and procedures.
- Administration level experience with AWS cloud.
- Experience with ACAS, Nessus, and OpenScap for STIG mitigation.
- Experience with STIG Mitigation playbook implementation via Ansible (or comparable configuration management tool) and the ability to work with Cyber Engineers to draft POAMs for STIGs.
- System Administration of Linux (Windows is a plus).
- Experience with scripting languages including but not limited to PowerShell, BASH, Python.
- Ability to create architecture diagrams and document runbooks for an end-to-end RBAC solution.
- Administration of computer systems related to domain services, including system startup and shutdown; security and application patch installation; security scanning and remediation; user account, profile, and permission management; system backup and restoration; system service and log management; system auditing; problem report management; performance management; and other IT administration-related services, as directed by the customer.
Target salary range $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.