DevSecOps Engineer Level 3

Must provide senior-level platform management and must lead technical delivery teams with planning and executing delivery tasks, including coordination of all product releases. Must provide leadership to direct and integrate activities across the program(s) to ensure successful implementation and support of platform tenancy. Must create, lead, and implement the tools to deliver an automated, CI/CD pipeline-based DevSecOps system capable of supporting containers, compiled software applications, scripts, and source code in a pre-compiled state. Must support the implementation of Infrastructure as Code (IaC), Everything as Code (EaC), DevSecOps, and CI/CD pipeline automation strategies. Must recommend, evaluate, and implement methods to optimize and enhance the application within the IaaS/PaaS/SaaS and in a cloud environment to maximize performance and minimize costs. Must drive the unification and automation of processes to enable the development of software capability across the entire DOL organization, instrumental in combining code, application maintenance, and application management. Must provide a strong understanding of the development lifecycle goals and the transactions occurring within pipelines, scanning tools, deployments, and all development lifecycle steps. Must work actively with application development teams to coordinate and optimize the steps that execute within the DevOps ecosystem and bring consistency and best practices in approach, tools, and standards. Must create and maintain fully automated Continuous Integration (CI) build and Continuous Deployment (CD) processes, which include writing builds and deployment scripts. Must actively participate and provide inputs in major design decisions working with Architects. Must design and develop the system to set the standard for future development and craft an architecture that smoothly works with existing infrastructure without compromising security. Must identify and introduce new opportunities to build platform-based solutions to help users meet their toughest challenges. Must demonstrate experience identifying marketplace plugins and/or designing/developing custom connectors as needed. Must support DOL to set the long-term strategy and roadmap for each team's platform standardization, modernization, and process/tool adoption

Experience Requirements:

• Bachelor's degree with twelve (12) plus years IT development experience.
• 7+ years of experience in implementing DevSecOps practice & tools, such as Experience building DevSecOps services in IaaS/PaaS/SaaS in Cloud (AWS, Azure) environments and a good understanding of their security considerations.
• 2+ years of Experience with containerization and cloud orchestration tools like Docker and Kubernetes.
• 5+ of experience with CI/CD best practices, automated builds and tests, quality gates, software quality, and CI tools, i.e., Jenkins, Ansible, Terraform, etc. Experience with configuration management tools, i.e., Git, GitHub, GitLab, Bitbucket, others.
• Experience with branching strategies, gated commits, source-controlled management.
• Experience with the principle of DevSecOps; Atlassian JIRA or other defect tracking tool experience; Atlassian Confluence, GitLab/GitHub, Jenkins, and artifact repository experience.
• Experience with security coding standard best practices, static and dynamic scanning tools, such as SonarQube, Fortify, Coverity, PCLint.
• Experience with Programming and scripting in a UNIX/Windows environment with scripting languages such as Bash, Shell, PowerShell, Perl, Python, Bash, Ruby, Shell, Scripts. Must have Agile/SAFe, and other related developer certifications and or demonstrate equivalent experience.