This job is restricted to tax residents of , but we detected your IP as outside of the country. Please only apply if you are a tax resident.
Job details
Job Type
Full-time
Part-time
Contract
Number of hires for this role
2 to 4
Qualifications
Bachelor's (Preferred)
AWS: 1 year (Preferred)
Full Job Description
Responsibilities include, but are not limited to:
Development of compliance as code (CaC) profiles and BASH scripts to execute from within an AWS Kubernetes Docker environment.
Instantiate various technologies in the environment to test profiles and scripts. Code profiles/scripts will be based off of DISA Security Technical Implementation Guidance (STIG) documentation.
Support a DevSecOps pipeline that will perform quality assurance and validation on the CaC files.
Development of InSpec Profiles and Prisma Rulesets (BASH Scripts) to validate compliance in a container environment.
Develop, support and maintenance of CaC files through the software pipeline.
Validate CaC files by instantiating technology and testing files using CHEF InSpec and Prisma.
Perform merge requests and reviews using Gitlab and other DevSecOps tools.
Support Government customer with implementation and overall usage of the tools
Basic Qualifications:
Bachelors degree in computer science or related field or equivalent experience
Practical exposure with Continuous Integration/Continuous Delivery tools like GItLab and Jenkins, to merge development with testing through pipelines
Experience with containerization technologies (Docker, Kubernetes, OpenShift etc.) and possess the ability to instantiate a containerized application for the purpose of compliance checking
Knowledge of security tools and Security Technical Implementation Guides (STIG)
Knowledge of BASH or Ruby, ability to write scripts to automate software compliance process
Experience with AWS virtual infrastructure and DevSecOps tools such as Development IDE's, GitHub or GitLab for source code management
Experience with various Linux operating systems and command line operation
Knowledge of Agile framework, Scrum methodologies and knowledge of tools used to support them
Basic Knowledge of cloud networking and cloud native tools
Must maintain IAT Level II Certification (Security + CE or higher)