Senior DevSecOps Engineer - Cloud

Overview

SENIOR DEVSECOPS ENGINEER - CLOUD (NAUT):

Bowhead seeks a Senior DevSecOps Engineer - Cloud to support our customer on the Nautical contract in the Arlington, VA area. This position leads the implementation of secure DevSecOps practices for migrating legacy DoD applications to cloud environments.

Responsibilities

• Design and implement CI/CD pipelines incorporating security controls for cloud environments (AWS GovCloud, Azure Government, Google Cloud for Government)
• Develop and maintain Infrastructure as Code (IaC) using tools such as Terraform, CloudFormation, and Ansible
• Implement automated security scanning and vulnerability assessment tools within deployment pipelines
• Establish container security practices for Docker and Kubernetes environments
• Ensure compliance with DoD security frameworks including NIST 800-53, FISMA, and FedRAMP
• Collaborate with development teams to implement security best practices throughout the software development lifecycle
• Monitor and respond to security incidents in cloud environments
• Maintain documentation for security procedures and compliance requirements
• Provide technical guidance on secure cloud architecture patterns
• Lead security assessments and Authority to Operate (ATO) processes
• Interface with the customer and external stakeholders in working groups, technical exchange meetings, and other forums
• Chair/co-chair meetings and working groups on behalf of government representatives as directed
• Resolve problems, allocate resources, manage personnel, and monitor performance to meet contract requirements
• Provide daily control and supervision of employees as assigned
• Provide planned replacement information at least 15 calendar days prior to replacement
• Provide information within 24 hours of an unplanned replacement
• Other duties as assigned

Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Data Science, Information Systems, or related field from an ABET accredited or CAE designated institution, OR 10+ years of relevant experience in lieu of degree
• Minimum of 10+ years of experience in DevOps/DevSecOps engineering
• Minimum of 5+ years of experience with cloud platforms (AWS, Azure, GCP)
• Experience with DoD security frameworks and compliance requirements
• Proficiency in scripting languages (Python, Bash, PowerShell)
• Experience with containerization technologies (Docker, Kubernetes)
• Knowledge of security tools (Nessus, Qualys, Fortify, SonarQube)
• Experience with CI/CD tools (Jenkins, GitLab CI, Azure DevOps)
• Strong understanding of network security and encryption protocols
• Experience managing technical personnel for IT and/or cybersecurity efforts

Preferred Qualifications:

• Master's degree in relevant field
• Cloud certifications (AWS Solutions Architect, Azure Solutions Architect, GCP Professional Cloud Architect)
• Experience with legacy DoD systems migration
• Knowledge of microservices architecture patterns
• Experience with service mesh technologies (Istio, Linkerd)
• DAWIA PM Practitioner certification

CERTIFICATION REQUIREMENTS:

Required: DoD 8570 IAT Level II or III certificationDesired: GIAC Security Essentials (GSEC), FITSP-D, GIAC Cloud Security Automation (GCSA), GIAC Information Security Fundamentals (GISF), (ISC)2 Systems Security Certified Practitioner (SSCP), CompTIA Security+

Physical Demands:

• Must be able to lift 25 pounds on occasion.
• Must be able to stand and walk for prolonged period amounts of time.
• Must be able to twist, bend, and squat periodically.

SECURITY CLEARANCE REQUIREMENTS: Must be able to maintain a security clearance at the Top Secret level with SCI eligibility and maintain SAP eligibility. Due to work requirements, this position will not entertain work from home capabilities. US Citizenship is a requirement for this contract.

#LI-KC1