DevSecOps Engineer

Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America.

RMC is hiring an on-site DevSecOps Engineer to support our customer in NSWC Dahlgren VA. The selected applicant will be expected to support the implementation and management of continuous delivery systems and methodologies within a fast-paced DoD environment.

Requirements

The selected applicant will be responsible for:

• Implementation and automation of security controls, governance processes, and compliance validation.
• Defining and deploying monitoring, metrics, and logging systems within Azure.
• Designing, managing, and maintaining tools to automate operational processes.
• Utilizing tools such as Azure DevOps, Jenkins, Docker, JFrog Artifactory, SonarQube, GitLab, and Kubernetes to develop and support a secure CI/CD pipeline.
• Vulnerability assessment, risk & compliance management, threat analysis, and incident handling.
• Implementation of security policies, managing the security life cycle, and ensuring accreditation and certification.
• Maintaining network security and administration, executing security audits, and formulating security strategy.
• Provide Tier 3 support and partner with solution architects and external vendor support teams.
• Troubleshooting, problem-solving, and providing technical qualifications.

REQUIRED QUALIFICATIONS

• HS Diploma or GED plus 7+ years of experience in Information Technology or Bachelor's degree in Computer Science, Engineering, or related field.
• Minimum of four (4) years of experience performing software design, code, and testing.
• Minimum of two (2) years of experience performing detailed and complex software design and development.
• Minimum of two (2) Experience in a continuous integration/continuous development (CI/CD) environment using containerization technologies (e.g. Red Hat Openshift, Kubernetes, Docker, etc.) and cloud environments (e.g. Azure).
• Experience working in specific environments: Jenkins, Docker, Java, Python, Ruby, Scripting YAML, SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing).
• Experience creating and maintain software pipelines.
• Experience in troubleshooting, risk management, and implementing security policies.
• Knowledge and strong understanding of DoD Enterprise DevSecOps Fundamentals.
• Ability to work collaboratively with IT and security teams to support the delivery of secure software solutions.

REQUIRED CERTIFICATIONS

• A DoD 8570 IAT Level 2 (Security+ CE or equivalent) or Level 3 (CASP, CISSP, or equivalent) is required.

REQUIRED CLEARANCE

• An Interim DoD Secret security clearance is required to start.
• Applicant must be able to obtain a Top-Secret Clearance. Selected applicant may be subject to a security investigation and must meet eligibility requirements for access to classified information.

  “Salary at RMC is determined by various factors, including but not limited to location, a candidate's specific combination of education, knowledge, skills, competencies, and experience, as well as contract-specific requirements. The current salary range for this position will be $115,000 to $165,000 annually.”

Benefits

At RMC, we're committed to your career growth! RMC differentiates itself from other firms through its investment in our employees. We invest our resources to train, certify, educate, and build our employees.

RMC can offer you a great place to work with a small company feel and give you the experience and certifications that will take your career to the next level. RMC also offers high-quality, low-deductible healthcare plans and a competitive 401K package.