RedHat Dev SecOps Engineer

PRIMARY DUTIES & RESPONSIBILITIES:

• Leads the definition of system security requirements, including but not limited to the authorization boundary, security domains, classification of data, etc.
• Designs the security interfaces, security interconnections, and the trust relationship between system components and external systems
• Implements system security designs using commercial-off-the-shelf (COTS), government-off- the-shelf (GOTS), and open-source hardware and software
• Oversees the hardening and configuration systems and system components in accordance with various Federal, Department of Defense (DoD), and Intelligence Community (IC) guidance
• Manages security assessments of systems and system components using industry standard automated vulnerability scanning tools; vulnerability scanning tools may include Tenable Nessus and Security Content Automation Protocol (SCAP).
• Coordinates security assessments to identify security control failures and recommend corrective actions

DESIRED SKILLS & REQUIREMENTS:

• Experience with or knowledge of DEVSECOPS Principles and ability to work and advise multiple cross-domain teams, manage conflict, and communicate both very technically and to a layman
• Experience with RH enterprise application platform or RH Open Shift.
• Expert knowledge with Windows and RHEL administration, in-depth knowledge of RHEL and Windows-based distros. Familiarity with a multitude of OSS tools and utilities for managing, monitoring and troubleshooting Linux infrastructure and networks.
• Certification as Red Hat OpenShift Administrator or otherwise experience in OpenShift configuration for applications to deploy and managing cluster operations
• Experience with AWS as a Cloud Practitioner or Azure Solutions Architect or DevOps Engineer
• Experience with Service Oriented Architecture, Microservice Architecture (MSA), or Representational State Transfer (REST) architecture(s)
• 2+ years experience configuring and managing F5 Firewall infrastructure in an enterprise environment
• Experience managing/administering web server architecture including Apache Tomcat on a RHEL O/S
• Experience working with two or more of the following development components: GIT, Helm, Fortify, SonarQube, Chef, Docker, OpenShift, Kubernetes, OKTA, F5 APM, and ADFS.
• Experience administering servers, backup operations, and systems monitoring in multiple and complex network server environments
• Experience with business continuity and disaster recovery; install new / rebuild existing servers and configure hardware, peripherals, services, settings, directories, storage, etc.
• Experience with web technologies such as HTML4/5, XML, and SOAPUI
• Experience with middleware technologies RabbitMQ, Java, and/or .NET runtime
• Experience using configuration management systems such as GIT, Apache SVN, or AWS Code Commit
• Experience with network analysis software such as SD Elements, Splunk, Sniffer, Wireshark, or Microsoft Network Monitor
• Certifications in cybersecurity to include Certified Cloud Security Professional (CCSP) or Certified Information Systems Security Professional (CISSP)
• Experience with scripting PowerShell for cloud management, automating user group administration, or as part of a CI/CD pipeline