DevSecOps Engineer - Clearance Required
Overview
LMI is looking for an experienced DevSecOps Engineer with an active SECRET clearance or above and a minimum 6-years of experience to support a strategic United States Navy organization with transforming how the US Navy tracks assets worldwide. This is a 100% remote role with limited travel. Previous experience with US Navy software delivery is a huge plus.
LMI is a consultancy dedicated to powering a future-ready, high-performing government, drawing from expertise in digital and analytic solutions, logistics, and management advisory services. We deliver integrated capabilities that incorporate emerging technologies and are tailored to customers’ unique mission needs, backed by objective research and data analysis. Founded in 1961 to help the Department of Defense resolve complex logistics management challenges, LMI continues to enable growth and transformation, enhance operational readiness and resiliency, and ensure mission success for federal civilian and defense agencies. LMI has been named a #TopWorkplace in the United States by Top Workplaces! We are honored to be recognized as a company that values a people-centered culture, and we are grateful to our employees for making this possible!
This position requires an active Secret clearance.
Responsibilities
As a DevSecOps Engineer you will be responsible for the following:
Security Integration:
- Implement security measures and controls within CI/CD pipelines.
- Conduct regular security assessments and vulnerability scans.
- Ensure compliance with Navy and Department of Defense (DoD) security standards and policies.
Automation and Scripting:
- Develop and maintain automation scripts to streamline and enhance deployment processes.
- Utilize configuration management tools (e.g., Ansible, Puppet, Chef) for consistent environment setup.
- Automated deployment and support of Kubernetes clusters.
- Development and ongoing support of Helm Charts, CFTs and other various templates.
Continuous Integration/Continuous Deployment (CI/CD):
- Design, implement, and manage CI/CD pipelines to ensure efficient and reliable software delivery.
- Integrate security tools and practices into CI/CD workflows to detect and mitigate risks early.
Monitoring and Incident Response:
- Set up and maintain monitoring and logging solutions to detect and respond to incidents in real-time.
- Collaborate with security teams to investigate and remediate security incidents and breaches.
Collaboration and Communication:
- Work closely with development, operations, and security teams to ensure seamless integration of security practices.
- Provide training and guidance to team members on security best practices and DevSecOps methodologies.
Infrastructure as Code (IaC):
- Utilize IaC tools (e.g., Terraform, ARM, CloudFormation) to manage and provision infrastructure.
- Ensure infrastructure is secure, scalable, and compliant with Navy requirements.
Risk Management:
- Identify and address potential security risks and vulnerabilities throughout the development lifecycle.
- Implement risk mitigation strategies and conduct regular risk assessments.
Compliance and Documentation:
- Ensure all systems and applications comply with relevant regulations and standards (e.g., NIST, FISMA, RMF).
- Maintain comprehensive documentation of security practices, procedures, and incident response plans.
Performance Optimization:
- Optimize performance and scalability of applications and infrastructure.
- Conduct performance testing and implement improvements as needed.
Research and Development:
- Stay current with emerging technologies and security trends.
- Evaluate and integrate new tools and technologies to enhance the security posture of Navy systems.
Disaster Recovery and Organization Continuity:
- Develop and maintain disaster recovery plans and organization continuity strategies.
- Conduct regular drills and tests to ensure preparedness for potential disruptions.
Software Development Support:
- Assist in the design, development, and deployment of secure software solutions.
- Ensure security is considered throughout the software development lifecycle (SDLC).
Qualifications
MINIMUM REQUIREMENTS
- Minimum of a SECRET security clearance
- Bachelor’s degree in Computer Science or related technical field
- DoD 8570 IAT Level II Certification (SEC+ or other)
- 5-years’ experience as a DevSecOps or Platform Engineer
- Previous government technology experience – ideally with the US Navy
- Minimum of 2+ years of experience programming in C# or similar.
- Ability to debug, optimize code, and automate routine tasks
- Systematic problem-solving approach, coupled with effective communication skills and a sense of drive
- Understanding of Unix/Linux operating systems
- Demonstrated experience building continuous, automated build and deploy pipelines.
- Demonstrated experience in conditional procedure of build and deploy pipeline based on security scans of source and artifact.
- Capable of working with software development team and platform infrastructure team to provide meaningful guidance to both for code development and deployment.
- In-depth knowledge of version control of release artifacts to facilitate upgrade rollout and rollback.
- Strong understanding of containerization of web applications.
- Understanding and familiarity with container orchestration engines such as K8s (EKS, AKS, GKE, Kops, OpenShift)
- Demonstrated Experience with AWS Code Pipeline / Code Deploy
- Demonstrated experience with
- Experience with bash shell scripting.
- Experience with Agile development methodologies and working with Agile teams.
PREFERRED EXPERIENCE/SKILLS:
- Master’s degree in science, technology, engineering, mathematics, computer science, economics, or related technical discipline
- AWS and/or Azure Associate certification
- Experience working in IL6 or equivalent secure environments.
- Experience with security requirements in a federal IT environment, including FedRAMP-certified providers and FISMA requirements for acquiring an ATO.
- Experience working in a consultant/client environment