Devops Engineer IV

Job Summary

General Atomics Integrated Intelligence, Inc. (GA-I3), an affiliate of General Atomics,maintains and deploys production systems for users across the Intelligence Community, Department of Defense, and commercial industry. We build and develop best-in-class all domain and globally focused situational awareness capabilities, including THRESHER and DRAGONSPELL, that process petabytes of data from numerous streaming data sources in near real time. Our systems apply state-of-the-art algorithms and machine learning techniques to extract features and fuse data from multiple phenomenologies to form a rich live view of objects in the sky, on the sea, and on the ground. Our rapidly growing suite of federal software solutions are used by thousands of intelligence analysts and military personnel around the globe to counter new and emerging threats to national security.

We are seeking a Senior Cloud Systems Engineer with expertise in security frameworks and compliance standards to maintain and enhance our multi-customer cloud environment. This role combines technical engineering with a focus on implementing and maintaining compliance with NIST 800 and ISO 27001 standards. The ideal candidate will ensure our infrastructure meets regulatory requirements while maintaining performance, scalability, and security.

DUTIES AND RESPONSIBILITIES:

• Cloud Systems Engineering:
  • Manage and optimize cloud infrastructure to ensure high availability, performance, and scalability. o Automate deployment, monitoring, and maintenance tasks using modern DevOps practices.
  • Implement Kubernetes and Docker best practices. Experience using Helm and Helm Charts.
  • Implement Site Reliability Engineering best practices
• Compliance Implementation and Maintenance:
  • Design and implement security controls to meet SOC, NIST 800 and ISO 27001 standards.
  • Conduct gap analyses, audits, and risk assessments to align systems with compliance requirements.
  • Develop and maintain enforceable policies, procedures, and documentation related to compliance and cloud operations.
• Monitoring and Incident Management:
  • Implement advanced monitoring solutions to identify and resolve issues proactively.
  • Ensure robust incident management processes are in place, including root cause analysis and reporting.
• CI/CD and Security Integration:
  • Build and enhance CI/CD pipelines with integrated security checks and automated compliance validation.
  • Work with development teams to implement DevSecOps best practices.
• On-Call Support:
  • Participate in a rotation for on-call support to resolve critical incidents.
  • Lead incident investigations with a focus on improving system reliability and security.
• Training and Collaboration:
  • Educate team members and stakeholders on compliance requirements and best practices.
  • Collaborate with internal and external auditors, as well as regulatory bodies, as needed.

We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.

Job Qualifications

• Typically requires a Bachelor's or Master's degree in Computer Science, Engineering, or related field and nine years of related experience.
• Extensive experience in cloud systems engineering with a focus on compliance and security.
• Strong knowledge of NIST 800 and ISO 27001 frameworks and their application in cloud environments.
• Proficiency in scripting and automation tools (e.g., Python, Bash, Terraform, Ansible).
• Expertise in monitoring and logging tools (e.g., Datadog, CloudWatch, Splunk).
• Hands-on experience with CI/CD tools and integrating security into deployment pipelines (ArgoCD, GitlabCI, Artifactory, AWS CI/CD, TravisCI, Github Actions).
• Familiarity with DevSecOps practices, identity and access management (IAM), and encryption technologies.
• 8-10 years of combined experience in cloud systems engineering and security/compliance roles.
• At least 5 years of experience with cloud platforms (AWS, Azure, Google Cloud Platform) and systems automation.
• At least 3 years implementing or maintaining compliance with frameworks like NIST 800 or ISO 27001 in a cloud environment.

PREFERRED SKILLS AND EXPERIENCE:

• Relevant certifications (e.g., CISSP, CISM, AWS Certified Security Specialty, ISO 27001 Lead Implementer).
• Experience with vulnerability management and penetration testing.
• Knowledge of incident response frameworks and disaster recovery planning.