Development of compliance as code (CaC) profiles and BASH scripts to execute from within an AWS Kubernetes Docker environment.
Instantiate various technologies in the environment to test profiles and scripts. Code profiles/scripts will be based off of DISA Security Technical Implementation Guidance (STIG) documentation.
Support a DevSecOps pipeline that will perform quality assurance and validation on the CaC files.
Development of InSpec Profiles and Prisma Rulesets (BASH Scripts) to validate compliance in a container environment.
Develop, support and maintenance of CaC files through the software pipeline.
Validate CaC files by instantiating technology and testing files using CHEF InSpec and Prisma.
Perform merge requests and reviews using Gitlab and other DevSecOps tools.
Support Government customer with implementation and overall usage of the tools

Basic Qualifications:

Bachelors degree in computer science or related field or equivalent experience
Practical exposure with Continuous Integration/Continuous Delivery tools like GItLab and Jenkins, to merge development with testing through pipelines
Experience with containerization technologies (Docker, Kubernetes, OpenShift etc.) and possess the ability to instantiate a containerized application for the purpose of compliance checking
Knowledge of security tools and Security Technical Implementation Guides (STIG)
Knowledge of BASH or Ruby, ability to write scripts to automate software compliance process
Experience with AWS virtual infrastructure and DevSecOps tools such as Development IDE's, GitHub or GitLab for source code management
Experience with various Linux operating systems and command line operation
Knowledge of Agile framework, Scrum methodologies and knowledge of tools used to support them
Basic Knowledge of cloud networking and cloud native tools

Job Types: Full-time, Part-time, Contract

Pay: Up to $60.00 per hour

Education:

Experience:

Contract Renewal:

Work Location:

Other Amazon AWS contracts

What

Where

Remote

DevSecOps Engineer (Remote)