DevSecOps Engineer
Emprise Corporation · Chesapeake, VA · 2 wk ago
On-siteEngineeringFull-time
Responsibilities
- Testing Environment Setup and Management
- Design and create standardized, efficient, and security-focused testing environments.
- Create and manage manual and automated testing configurations for internal and external systems.
- Support database configuration, administration, and content of databases for internal test platforms.
- Provide Full Stack Application support to ensure proper configuration and secure interactions.
- Coordinate with internal development teams and third-party agents for packaging and testing software installations.
- Manage and support application deployments to remote customer sites using various delivery mechanisms.
- Security and Risk Management
- Support Risk Management Framework (RMF) activities, including Boundary Diagrams, ATO, and PPSM.
- Maintain a thorough knowledge of RMF content.
- Create, deploy, and manage PKI Certificates (DoD, self-signed).
- Monitor and address vulnerabilities and security concerns in test and production environments.
- Provide input on best practices for Security and Operations in shift-left Development Process.
- Application and Device Deployment
- Coordinate with internal development teams and third-party agents for software installations, patches, and other distributions.
- Develop and manage standardized, secure, compliant, and repeatable build pipelines.
- Deploy applications to remote customer sites using various mechanisms.
- Occasionally support work onboard maritime vessels for advanced environment validation or troubleshooting.
- Miscellaneous Day to Day
- Create, update, and present product environment configurations and supporting systems.
- Analyze server and application logs for potential issues.
- Communicate regularly with internal and customer points of contact.
- Bachelor's degree in an IT-related field or equivalent experience.
- At least 10 years of Systems Integration/Development/Security/Operations experience.
- Strong fundamentals in full-stack systems integration, network operations, Apache Tomcat, and application server skills.
- Expert-level development experience in Java and associated frameworks/libraries.
- Working experience with Windows installer packages (NSIS, WiX).
- Experience with SQL, RDBMS concepts, JDBC/ODBC.
- Extensive experience in tools such as: git, Jenkins, Tenable, Nexus, Fortify, SIEM’s, Black Duck.
- Experience in Systems Administration (Windows Server/Active Directory & Linux).
- Experience in hybrid and cloud-based environments, AWS, Azure.
- Ability to obtain and maintain a DoD Security Clearance.
- Strong verbal, written, and communication skills.
- Ability to occasionally support work onboard maritime vessels.
- Experience with Containers and VMs in DevSecOps optimized environments.
- Familiarity with CMMC2.0, NIST 800171, Microsoft 365 GCCH, Purview, Azure, Intune.
- Experience with PowerShell, Linux, and scripting languages (e.g., bash).
- Programming experience with Tomcat internals (e.g., Valves/Filters).
- Security configuration and operations experience with OpenSSL and Apache Tomcat tcnative.