DevSecOps Security Technical Analyst (Secret required)

Company: General Dynamics Information Technology
Location: Roy
Posted on: May 27, 2023

Job Description:

We are GDIT. We stay at the forefront of innovation to solve complex technical challenges. General Dynamics Information Technology is seeking a DevOpsSec Security Technical Analyst with Cloud experience.

The position will support a US Air Force program that is playing a major role in strengthening and modernizing America's Strategic Deterrent Force. GDIT will develop and deliver a digital engineering design solution that enables and integrates the program's complete set of data, tools, and model-based systems engineering (MBSE) activities, and makes them available to internal and appropriate external engineering and programmatic stakeholders throughout the program's lifecycle.

This effort will culminate in an abstracted, highly transportable environment delivered to the Government, to be instantiated "virtually" on the Government's network infrastructure, and updated during the Engineering and Manufacturing Development (EMD) phase of weapon system development.

For this effort, GDIT will use cloud based concepts including IaaS (Infrastructure as a Service); PaaS (Platform as a Service); and SaaS (Software as a service) and containerization concepts including Terraform and Docker to buildout the DEE. Together, the application of these concepts will result in a Software-Defined Data Center (SDDC).

MAJOR RESPONSIBLITIES AND DUTIES:

• Working daily with Development teams to integrate dependencies and backend components via automated pipelines
• Educating teams on adoption of DevSecOps Security practices and tooling, and supporting those practices and tools
• Creating, managing, and maintaining Pipelines, Data Integrations, and Infrastructure as Code (IaC) for our CI/CD pipelines and associated project-based deployments
• Assisting teams with DevSecOps issues related to performance, configuration, or otherwise
• Identifying and implementing improvements to how we securely build, deploy and monitor software projects
• Helping create cloud infrastructure in a cost-efficient manner
  
  REQUIRED EXPERIENCE/SKILLS:
  
  • US Citizen
  • BA/BS Degree (or equivalent experience)
  • 2+ years of Security/DevOps/Cloud (AWS) experience
  • Experience with Kubernetes
  • Experience with PKI, mTLS
  • Experience with Security Scanning Tools: Anchore, OSCAP, Twistlock (preferred tools)
  • Experience with creating software packages for RMF approval
  • Experience with Static Code Quality Scanning Tools: SonarQube (preferred tools)
  • Experience patching containers and operating systems for vulnerabilities - CVEs and Compliance
  • Experience with Software Engineering and Continuous Delivery and/or DevOps related practices
  • Experience with Git version control
  • Experience with Docker, containerization build technologies, and container registries
  • Experience with Gitlab and GitLab CI/CD Pipelines
  • Experience with Ansible or shell scripting
  • Experience using Linux/Unix (CentOS or RedHat preferred)
  • Must be detail oriented, critical thinker, possess excellent problem-solving skills
  • Desire for continuous improvement and a commitment to best practices
  • Possess effective communication skills, especially in a team setting
  • Familiarity with government standards for security, identity, and data management, such as NIST
  • Performs assessments of systems and networks within the network environment or enclave. Plans, prepares, and executes tests of systems to evaluate results against specifications and requirements, and measures effectiveness of defense-in-depth architecture against known vulnerabilities.
  • Security+ Certification
  • Active DoD Secret Clearance
    
    DESIRED EXPERIENCE/SKILLS:
    
    • Experience with Nexus, Packer, Container Registries, and Ansible
    • Knowledge of secure development practices
    • Kubernetes Policy Enforcement and Security
    • Stays current with related technology and practices
    • Ability to handle a dynamic work environment
    • Effective organization and time management skills
    • Desire for continuous learning
      
      Security Clearance:
      
      • Secret required; Top Secret clearance preferred
        
        Work Location:
        
        • Roy, Utah
          WHAT GDIT CAN OFFER YOU:
          
          • Full-flex work week
          • 401K with company match
          • Internal mobility team dedicated to helping you own your career
          • Collaborative teams of highly motivated critical thinkers and innovators
          • Ability to make a real impact on the world around you
            
            Work Requirements
            
            .cls-1 fill:none;stroke:;stroke-miterlimit:10;stroke-width:2px;
            Years of Experience
            5 + years of related experience
            
            may vary based on technical training, certification(s), or degree
            
            .cls-1,.cls-2 fill:none;stroke:;stroke-miterlimit:10; .cls-1 stroke-width:1.77px; .cls-2 stroke-width:2px;
            Certification
            CompTIA - Security+ CE - CompTIA
            
            .cls-1 fill:none;stroke:;stroke-miterlimit:10;stroke-width:2px;
            Travel Required
            None
            
            .cls-1 stroke-width:1.5px; .cls-1,.cls-2,.cls-3 fill:none;stroke:;stroke-miterlimit:10; .cls-2 stroke-width:2px;
            Citizenship
            U.S. Citizenship Required
            
            About Our Work
            
            We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
            COVID-19 Vaccination
            GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on customer site requirements.
            
            GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Keywords: General Dynamics Information Technology, Salt Lake City , DevSecOps Security Technical Analyst (Secret required), IT / Software / Systems , Roy, Utah