Homeoffice Senior DevOps Engineer bei eSimplicity

Description

About Us: 

eSimplicity is modern digital services company that work across government, partnering with our clients to improve the lives and ensure the security of all Americans—from soldiers and veteran to kids and the elderly, and defend national interests on the battlefield. Our engineers, designers and strategist cut through complexity to create intuitive products and services that equip Federal agencies with solutions to courageously transform today for a better tomorrow for all Americans. 

We are seeking an experienced DevSecOps Engineer to join our team supporting the Centers for Medicare and Medicaid Services (CMS). In this role, you will be responsible for integrating security best practices and automation into our CI/CD pipelines and cloud infrastructure. You will work within a large-scale AWS environment that supports Big Data processing, web applications, and various reporting tools, ensuring the security and compliance of critical healthcare systems.

Responsibilities: 

·  Design, build, and maintain secure CI/CD pipelines using GitHub Actions to deliver applications and infrastructure.

·  Embed security controls, tools (SAST, DAST, SCA), and processes throughout the software development lifecycle.

·  Manage and secure cloud infrastructure using Infrastructure as Code (IaC) with Terraform and Terragrunt.

·  Implement and manage security for containerized applications using Docker.

·  Collaborate with development teams (Java, Python, Django) to identify and remediate security vulnerabilities in code and dependencies.

·  Automate security monitoring, logging, and incident response procedures within the AWS cloud environment.

·  Ensure systems and applications meet federal compliance standards (e.g., FISMA, NIST) and CMS-specific security requirements.

·  Support the security of data platforms and services, including Databricks and Redshift.

·  Work with cross-functional teams to foster a culture of security awareness and best practices.

Requirements

Required Qualifications: 

·  All candidates must pass public trust clearance through the U.S. Federal Government. This requires candidates to either be U.S. citizens or pass clearance through the Foreign National Government System which will require that candidates have lived within the United States for at least 3 out of the previous 5 years, have a valid and non-expired passport from their country of birth and appropriate VISA/work permit documentation. 

·  Minimum of 8 years of previous DevOps Engineer experience.

·  A Bachelor’s degree in Computer Science, Information Systems, Engineering, Business, or other related scientific or technical discipline. With ten years of general information technology experience and at least eight years of specialized experience, a degree is NOT required. 

·  Proven experience in a DevSecOps, DevOps, or Security Engineering role.

·  Strong hands-on experience with AWS services and cloud security principles.

·  Proficiency with Infrastructure as Code (IaC) tools, specifically Terraform and Terragrunt.

·  Demonstrated experience building and managing CI/CD pipelines, preferably with GitHub Actions.

·  Solid understanding of containerization technologies, including Docker security.

·  Proficiency in at least one scripting language, such as Python or Bash.

·  Must be a U.S. Citizen or Green Card holder and able to obtain a Public Trust clearance.

Desired Qualifications: 

·  Prior experience supporting CMS or other federal government agencies.

·  Familiarity with federal compliance frameworks like FISMA and NIST.

·  Experience with build tools such as Maven.

·  Knowledge of data platforms and warehousing solutions like Databricks and Redshift.

·  Experience securing web applications built with frameworks like Django.

·  Familiarity with tools in our stack, including Chompy.

·  Relevant industry certifications (e.g., AWS Certified Security - Specialty, CISSP, GSEC)

·  Experience Administering/Sizing Clusters, such as Redshift/DataBricks/Hadoop.

·  Experience configuring and maintaining DevSecOps tools, infrastructure automation, and security scanning solutions (e.g., Nessus, BurpSuite, OWASP, etc.).

·  Expertise in security best practices with an emphasis on AWS: IAM policies/Roles, security groups and network security.

Working Environment:
eSimplicity supports a remote work environment operating within the Eastern time zone so we can work with and respond to our government clients. Expected hours are 9:00 AM to 5:00 PM Eastern unless otherwise directed by your manager.

Occasional travel for training and project meetings. It is estimated to be less than 25% per year.

Benefits:
We offer highly competitive salaries and full healthcare benefits.

Equal Employment Opportunity:
eSimplicity is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, sexual orientation, gender identity, or status as a qualified individual with a disability.