DevSec Ops Engineer

Pueo is known for bringing the best talent and unique tools to every opportunity. Pueo's Parliament (aka workforce) is composed of professionals who are seeking the opportunity to work in a small business with a flat organization that thrives on career development and independence. In support of mission and professional growth, our Parliament has supported the development of multiple patents, proprietary tools, and applications as well as trademarked processes.

Our flat organization emphasizes career development across multiple career environments (at the members own pace) and ensures those who contribute broadly are properly rewarded. Pueo has four career environments where every member of the parliament can participate. Each environment has opportunities available for all levels. Opportunities are framed by an employee's desires and capabilities, and we ensure challenges, growth, and unique experiences are available for employees at all levels.

Our Career Environments (Program, Functional, Service, and Leadership) provide numerous opportunities for employees to invest in their personal growth and those things that offer fulfillment. We invest in helping our members create and execute their career development plans. Our Pods (small teams of 5 or less) are comprised of personnel with similar skillsets to ensure mentorship, understanding, and peer support.

Role: Pueo has an opportunity for an experienced DevSec Ops Engineer to support our DoD customer in Washington, DC.

Responsibilities:

• Perform in a DevSecOps engineering role responsible for the design, configuration, testing, and deployment of cloud services in support of the IC Assessment and Authorization process,

• Support systems deployment, configuration management and application installations within the AWS/Azure commercial, Secret and TS/SCI regions with traditional cloud services such as VPC, EC2, S3, NSG, and RDS, along with more modern cloud services such as serverless, data science, DevOps tools and API services,
• Apply knowledge of the latest trends in the DevSecOps industry to support the analytical service contract in the deployment of web services and solutions enabling the automation of data discovery and support higher orders of analysis to implement DevSecOps practices,
• Assist DevSecOps team members with the development and operationalization of security and access Cloud requirements,
• Support execution and refinement of the DevSecOps process as part of the customer's RMF Transformation efforts,
• Provide security engineering input to programs throughout the lifecycle to ensure systems meet ICD-503 standards,
• Maintains current knowledge of relevant technology as assigned,
• Experience with RHEL/CentOS 8 and Windows Server 2019,
• Experience with ServiceNow API and integrating with ServiceNow,
• Extensive hands-on experience with cloud architecture, services, migration and security to include AWS-C2S and Azure,
• Experience with pipeline tools such as Ansible, Jenkins, GitLab/GitHub and Artifactory,
• Experience CoreOS, Docker and container scanning/security tools,
• Experience with Static and Dynamic Application Security Testing tools,
• Experience with Kubernetes or OpenShift Container Platform,
• Experience with DevSecOps processes, Continuous Integration/Continuous Delivery (CI/CD),
• Experience with service mesh technology and components, such as Istio, Envoy, Prometheus, Clair and Quay,
• Experience with Elastic, Logstash, Kibana (ELK), Grafana, Apache NiFi,
• High-level understanding of multi-security domain operations.

Qualifications:

• Current active TS/SCI clearance required; CI polygraph preferred, or the ability to obtain and maintain a polygraph,
• Bachelor's degree in Engineering, Cybersecurity, Computer Science or a related technical discipline preferred,
• Ten (10) years of experience in technical field required; an additional four (4) years of experience may be substituted for a degree,
• Must possess current DoD 8570 IASAE Level II certification; AWS certification(s) preferred,
• Minimum 5 years' experience with development and security,
• Minimum 3 years' experience using OpenShift, Kubernetes, Docker, and public cloud.

Pueo is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. Pueo takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.