Linux Automation Security Engineer- SME
Washington, DC

Job Description

Title:Linux Automation Security Engineer- SME

Location:Washington, DC, Alexandria, VA, Reston, VA

Clearance: TS/SCI with the ability to obtain and maintain a CI polygraph

Responsibilities:

* Responsible for developing the lifecycle of Linux automation pipeline using latest RHEL 8 as well as Debian-based platforms such as Kali
* Experience creating Linux automation using infrastructure as code tools such as Terraform and/or Cloud-Formation and Saltstack
* Experience with image creation tools such as packer
* Perform in a DevOps engineering role responsible for the design, configuration, testing, and deployment of cloud services in support of the IC
* Apply knowledge of the latest trends in the DevOps industry to support the analytical service contract in the deployment of web services and solutions enabling the automation of data discovery and support higher orders of analysis to implement DevOps practices
* Provide security engineering input to programs throughout the lifecycle to ensure systems meet ICD-503 standards
* Use system automation technologies and configuration management technologies such as Chef, Puppet, Ansible or others to create standardized IT environments
* Design and build CI/CD DevSecOps pipeline and work with other teams to integrate security best practices. Use tools such as Jenkins, Maven, Artifactory, Git, SonarQube
* Design and build containerized environment using Docker, Kubernetes, OpenShift enforcement of organizational security policies, through monitoring of vulnerability scanning tools
* Work with Solution Architects to conduct Proof of Concepts, and assist in production implementations
* Execute periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external web integrity scans to determine compliance
* Participates in special projects as required

Requirements:

* Bachelor's degree in Engineering or a related technical discipline preferred with 10 years of experience; an additional 4 years of experience may be substituted for a degree
* Extensive hands-on experience with cloud architecture, services, migration and security to include AWS-C2S and Azure
* Designing and writing test automation scripts; utilize automation frameworks
* Design and build automation solutions for the Continuous Integration/Continuous Delivery process
* Familiarity with test automation tools and frameworks such as Cucumber, Gherkin, Ruby, Selenium, etc.
* Develop new or extend existing build and test automation tools and frameworks as needed to provide complete Continuous Integration environment
* Expertise in Linux administration and automation
* Experience with DevOpsSec and SAP (Special Access Programs) security management
* Understanding of cloud and virtualization based technologies (AWS, VMware, Amazon Cloud, Azure)
* Experience working with Azure NoSQL databases
* Knowledge of static and dynamic code tools such as Jenkins, Twistlock, Docker preferred
* Strong Linux (RHEL preferred) and scripting background for task automation (Python, Ruby)
* DevOps Tools such as Salt, Chef, Puppet, Jenkins, Git, Artifactory
* Must have a high-level understanding of multi-security domain operations
* Must possess current DoD 8570 IAT III certification
* AWS and/or Azure certification(s) preferred
* Current active TS/SCI with the ability to obtain and maintain a CI polygraph

Equal Opportunity Employer/Veteran/Disabled