DevSecOps Engineer at Command Post Technologies, Inc.

Description

Support the development, operation, and maintenance of DevSecOps processes, tools, and an automation pipeline that supports traditional application software development, integration of third-party applications, and Infrastructure as Code (IaC) scripts and software. Provide support for a variety of development teams that results in a cohesive, functional system that is maintainable and can be deployed across a variety of connected and disconnected environments. Ensure the DevSecOps environment facilitates designing, implementing, deploying, and executing automated tests, and continually investigate new technologies to improve productivity, quality, ease of use, and maintenance. Collect, process, and present information and metrics to show automation improvements or degradations over time. Support platform improvements to increase and sustain the availability of mission-critical development tools.

Responsibilities

• Ability to perform many duties involving DevSecOps functions, including, but not limited to, authoring and maintaining automation deployment and monitoring scripts, developing and maintaining security controls and systems, managing virtualized and containerized assets, creating virtual and physical network configurations, servers, communications, and test and developer engineering support. 
• Support the design, integration, test, and initial deployment of a variety of applications in an enterprise Kubernetes environment using modern tools and patterns
• Be a results-oriented contributor as part of a team of engineers focused on providing an automated DevSecOps environment and supporting the automation of all aspects of system configuration and deployment
• Must be able to author and maintain scripts in a variety of languages.
• Must be able to author and maintain documentation pertaining to DevSecOps processes and automation.
• Administer and utilize the overarching configuration management tools and processes to ensure efficient and accurate tracking of baselines
• Analyze real-world problems and implement solutions that leverage industry best practices and improve the productivity of the overarching team
• Support contributions to the platform towards efficient use of the DevSecOps processes and tools.
• Troubleshoot capabilities to diagnose system problems; analyze hardware and software functionality; identify, locate, resolve, and repair problems. Document and present performance records and results.

Requirements

• Associates' or Bachelor’s degree in a technical discipline such as computer science or information technology from an accredited college or university. 
• Two or more years of increasingly complex professional work experience in DevOps roles required.
• Experience implementing DevSecOps, DevOps, or IT or Security automation supporting multiple teams.
• Knowledge of and ability to implement DevSecOps platform using private and commercial cloud best practices.
• Strong experience with the Linux OS.
• Experience with private and hybrid cloud design/operation/monitoring/deployment:
  1. VMware vCenter and ESXi, generally maintained at the most current version.
  2. Practical knowledge of Kubernetes and general containerization development, security, deployment, and management practices
  3. Knowledge of or ability to learn Ansible, Terraform, and similar tools to automate deployment and destruction of virtual machines, networks, and other virtualized assets in VMware environments.
• Prioritize multiple tasks, projects, and demands.
• Support documentation of DevSecOps and related technologies, including the creation of system and process diagrams.
• Effective interpersonal and communication skills. 
• Professionally convey system-wide performance information routinely via tools such as PowerPoint, Excel, Visio, Jira, Confluence, etc.
• Train others to perform similar DevSecOps and automation tasks.   Support a corporate library of knowledge by maintaining and evangelizing content.
• Interact with developers to understand software changes that will impact development and testing activities, examine any relevant change implementation, and then report the changes to developers and testers, welcoming feedback for future improvements.