Security Engineer

Software development, Product development, Operations management, Architecture, ERP, DoD, Java, Migration, Cyber security, Government, Software deployment, Security, Enterprise architecture, Implementation, Kubernetes, Risk management framework, Information assurance, Compliance, Continuous integration, Security clearance, Lean methodology, Operating systems, PaaS, Cloud, Pivotal, Cloud Foundry, Data management, Security engineering, Continuous delivery, Strategic planning, Analytics, Project management, Agile, Web services, IaaS, React.js, IT strategy, Integration architecture, system engineer, C, Operations, Security Engineer, kessel run, military technology, airforce technology, Networking, Docker, Continuous improvement, Professional development, System administration, Infrastructure, Microsoft Windows, Linux, Database, Web development, Macros, RMF, Fortify, Computer science, Strategy, ATO, Software, Leadership, IMPACT, Automation, Storage, Disaster recovery, Distributed computing, Insurance, Monitoring, Mathematics, Git, Audit, Training, DevSecOps
Full Time
Up to $135,000
Work from home not available Travel required to 10%.

Job Description

Background:

Metric5 is currently seeking a Platform Security (DevSecOps) Engineer to join a growing team on an exciting and highly visible project for a DoD customer.

The Metric5 team is seeking a Platform Security Engineer that will provide support to developing macro-level architectural security solutions of a multi-region cloud based infrastructure, a cross-cutting application and integration architecture, and a data management and analytics architecture, and provide specialized security training to our product teams building on the enterprise platform.  The candidate will analyze the security of applications and services and release and deployment pipelines.  He/she will be able to discover and address security issues, build security automation and quickly react to new threats.  Additionally, the candidate will develop and provide a robust security strategy that emphasizes its ability to perform design and code reviews and security-related tasks that mitigate risks.  Candidate will also be familiar with and capable of working with product developers to maintain software solutions that enables developers to operate quickly while maintaining compliance with existing Continuous Authority to Operation (C-ATO) requirements.

The successful candidate will have senior knowledge and senior hands-on experience building enterprise-level information assurance (IA) and security-enabling frameworks for a large-scale, complex, and distributed system. This project will feature strategic team members co-located with the product teams, primarily in the Boston, MA Area, to support a culture of continuous improvement across the teams.

Required Skills:

  • 5 years’ experience in software development environments to include Java, Web services, Database, and/or web application development
  • 5 years’ experience providing enterprise-level platform security, CyberSecurity and/or Information Assurance
  • 3 years’ experience with major Platform as a Service (PaaS) solutions such as Pivotal Cloud Foundry or OpenShift
  • 3 years’ experience with agile and lean philosophies
  • 2 years’ experience with DevSecOps tools and processes to include, but not limited to Git, Concourse, SonarQube, Fortify and ThreadFix
  • 2 years’ experience with container technologies such as Docker or Kubernetes.
  • 2 years’ experience providing system administration support to a diverse set of Operating Systems (Microsoft Windows, Linux, etc.)
  • Experience with Continuous Delivery and Continuous Integration techniques
  • Experience with Risk Management Framework (RMF) and Authority to Operate (ATO) guidelines, processes and procedures

Desired Skills:

  • Experience with architecting and migrating applications to the Infrastructure-as-a-Service (IaaS) and Platform-as-a-Service (PaaS) cloud environments with a firm understanding of unique security factors and risks involved in being cloud native
  • Experience of working with Pivotal Cloud Foundry (PCF) and the ability to provide expertise for operational management of Pivotal Cloud Foundry on monitoring, management, disaster recovery, security compliance/auditing, networking, storage, service brokers and buildpacks
  • At least two (2) example of successfully leading the development of security strategy for any (DoD or non-DoD) large-scale, complex, and distributed system deployment into the cloud.
  • Experience with Continuous Delivery and Continuous Integration techniques

Education: Bachelors in a Technical Discipline – Computer Science, Mathematics, or equivalent technical degree (Desired not required)

Years of Experience: 5+ years of experience or more

Clearance: Must be a United States Citizen and able to obtain a security clearance for this government position.

About Metric5

Metric5 is a small business with big company benefits. We have a passionate team of smart, fun-caring professionals, and we are here for the long haul. Join our close-knit growing team in a business where your contributions make an enormous impact. Our organization offers a comprehensive employee benefits package, continuous professional development, with a best in class company culture that is enjoyable to work in and supports the growth of each of our professionals.

Our benefits include:

  • Health & Dental Insurance 100% of individual coverage paid for by the company
  • Life & Short Term Disability Insurance
  • 401K with company match (employees are immediately vested)
  • Paid Vacation 
  • 8 Paid Holidays per year (plus 2 paid floating holidays)
  • Maternity and Paternity Leave
  • Employee bonuses
  • Professional Development reimbursement program
  • Tuition Assistance Program

Metric5 is an Equal Opportunity/Affirmative Action employer. All qualified candidates will receive consideration for employment without regard to disability, protected veteran status, race, color, religious creed, national origin, citizenship, marital status, sex, sexual orientation/gender identity, age, or genetic information. Metric5’s commitment to diversity and inclusive selection practices includes ensuring qualified long-term unemployed job seekers receive equal consideration for employment.

 

 

Dice Id : 91102443
Position Id : 6336218
Originally Posted : 3 months ago
Have a Job? Post it