Lead DevSecOps Engineer

Information processing systems are the lifeblood of national security efforts, facilitating an understanding of the global situation, strategic planning, and tactical execution.  The reliability, accessibility, and sophistication of these systems can determine the outcomes of conflicts before they begin.  STR’s Systems Development Division (SDD) focuses on developing actionable, advanced technology solutions to provide asymmetric advantages within the information domain. SDD considers the entire lifecycle of the solution, from conceptualization and architecting, through development, to deployment, while leveraging novel technologies to deliver first-of-a-kind systems.  Current efforts include programs for airborne and space RF as well as advanced testing enabled by multi-function, multi-modal capabilities. 

As a Lead DevSecOps Engineer in SDD, you will lead the implementation of Continuous Integration/ Continuous Deployment (CI/CD) pipelines for software integrating complex embedded RF systems, signal processing, and radar, with a primary focus on Air-to-Air applications.   

What you will do: 

• Lead DevSecOps pipeline implementation including requirements analysis, design, development, deployment, maintenance, and operation of all phases of the DevSecOps process and tool chain
• Support DevSecOps pipelines in unclassified and classified environments
• Configure and maintain multiple development and DevOps environments at different classification levels, focusing on developer productivity, application performance, security monitoring, and alerting
• Collaborate with stakeholders to ensure team infrastructure toolsets are configured, maintained, and reliable, in compliance with program requirements and Department of Defense standards
• Coach team members on DevSecOps best practices while continuously helping to improve processes
• Identify areas for improvement and implement enhancements
• Document the pipeline architecture and user processes to modify and update pipelines

Who You Are: 

• This position requires the ability to obtain a Top Secret (TS) security clearance, for which U.S. citizenship is needed by U.S. Government
• BS in Computer Science, Information Technology, or related technical field 
• Demonstrated experience leading the implementation of DevSecOps pipelines, preferably on a DoD development effort 
• Experience with cloud service providers such as AWS EC2 and knowledge of cloud-native services 
• Proficiency with build, continuous integration, and continuous deployment tools such as Bazel, Jenkins, GitLab CI  
• Experience with containerization technologies (e.g. Docker) and orchestration tools (e.g. Kubernetes) 
• Familiarity with security scanning tools (e.g., SonarQube) and best practices for secure coding, encryption, and access control 
• Familiarity with IT configuration management tools (e.g. Ansible)  
• Familiarity with monitoring and logging tools (e.g. Grafana, ELK Stack, or Splunk). 
• Understanding of networking concepts and security protocols, and ability to configure and manage network security measures 
• Strong scripting skills to write and maintain automation scripts 
• Knowledge of automation frameworks and tools to streamline repetitive tasks and manage complex workflows 

Even Better: 

• Active Security Clearance
• Advanced Degree in Computer Science, Information Technology, or related technical field 
• Domain expertise in one or more of the following areas: Electronic Warfare, Antenna Apertures, Sensor Resource Management, Large-Scale Platform Test Systems, Cyber Physical Systems, Open System Architectures (UCI, OMS, COARPS) 
• Demonstrated expertise in Java, Python, or C++  
• Experience utilizing the following:  
  • Micro-service architectures 
  • Object-Oriented Programming principles 
  • Agile software lifecycle methodologies and tools 
  • Test-driven development methodologies