Lead DevSecOps Engineer - Clearance Required
Basic Qualifications
- Knowledge of modern DevSecOps tools and practices, including Docker/podman, Kubernetes, Openshift, Gitlab CI
- Knowledge of cloud computing design and security principles
- Experience with various programming languages, including C, C++, Python, Powershell, Typescript, C#, or Java
- Experience working in an Agile development environment, including tools such as Jira, AzureDevOps and Confluence.
- Experience managing/developing cloud environments (e.g. AWS, Azure, GCP)
- Experience supporting teams with requirements interpretation, interface definition and testing
- Experience with CI/CD pipelines and infrastructure as code
- Experience integrating DevOps tools into end-to-end pipelines
- Security + Position requires a government security clearance; you must be a US Citizen for consideration.
Job Description
Ensures software baselines are Configuration Managed and properly tagged + versioned
Ensures key software measures, including total, added, modified, and removed Source Lines of Code (SLOC) are tracked for each software release.
Manages the configuration and documentation of the current state of software development-specific licenses, tools, and libraries, including COTS and FOSS, through a human-readable Software Bill of Materials (SBOM).
Manages the programs Agile Planning and Issue tracking system
Manages software build pipeline infrastructure to enable the build and deployment of development and operational software versions
Manages deployment of software versions to unclassified and classified test environments, including transfer and packaging of application software, libraries, and dependencies as needed.
Manages software installers and supporting deployment scripts for operational software versions, with the support of the Field Operations and Maintenance Team.
Manages the setup, configuration, and maintenance of all manual and automated test environments to enable integration and test, with the Support of the development team (Architects and Product Owners), I&T Team, and System Administration / Infrastructure team
Manages in the Integration of software applications with internal environments (e.g., SIPR Lab) with the support of the I&T Team and the System Administration team.
Ensures software application and container-level cyber-security compliance to LM and USG standards
Generates cyber-security artifacts required for (1) Software Certification and Accreditation (C&A), and (2) Deployment to target environments
Works with the Lead Architect to continuously improvement software development processes and tools.
Who We Are
As part of the C4ISR Weapons Platform Integration (WPI) team, you will support on-site DevSecOps for target & strike planning operations as part of the JASSM Enterprise Software program.
Reporting to the DevSecOps lead, you will work with cross-functional, multi-site teams and should be comfortable working in a highly dynamic customer environment and adept at working with geographically dispersed teams.
Who You Are
You appreciate the analytical side of work and can visualize and understand complex systems- you think optimization problems are fun!
At the same time, you find it easy (and also fun) interacting with colleagues and customers.
You are a wanderlust who enjoys traveling and discovering new places and can thrive in remote locations with little oversight.
Why Join Us
Your Health, Your Wealth, Your Life
Our flexible schedules, competitive pay and comprehensive benefits enable you to live a healthy, fulfilling life at and outside of work.
Desired Skills
- Experience working with Vaults / removing passwords from source and at rest configs
- Hands-on experience with static/dynamic application security testing (SAST/DAST) tools (e.g., SonarQube, Checkmarx, OWASP ZAP)
- Familiarity with container security (e.g., Trivy, Aqua, Twistlock, and runtime protection)
- Knowledge of secret-management solutions (Vault, AWS Secrets Manager, Azure Key Vault)
- Experience with software application and container-level cyber-security compliance to LM and USG standards.
- Experience with software configuration management principles and implementation.
- Able to obtain a Top Secret / SCI Clearance
- Experience with Government IL6 cloud environments (Examples: Cloud One, CloudWorks)
Other Important Information
By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match.
Should this match be identified you may be contacted for this and future openings.
Ability to work remotely
Part-time Remote Telework: The employee selected for this position will work part of their work schedule remotely and part of their work schedule at a designated Lockheed Martin facility.
The specific weekly schedule will be discussed during the hiring process.