DevSecOps Engineer

ROLE & RESPONSIBILITIES: 

We are seeking a highly skilled and experienced DevSecOps Engineer to join the Sparksoft team. The successful candidate will be responsible for integrating security practices within the DevOps process, ensuring the reliability, availability, and security of the APS system. This role involves continuous monitoring, automation, and optimization of system infrastructure and applications while adhering to stringent security and compliance standards.

Key Responsibilities:

Operations and Management (O&M):

• Maintain an O&M Plan specifying system performance requirements, including operating parameters, maintenance procedures, and production support.
• Provide cloud and application support services to ensure APS components are available, secure, and functioning as expected.
• Develop and maintain automated CI/CD pipeline processes and tools, including Jenkins, GitHub, and Sonatype Nexus.
• Develop and maintain infrastructure automation scripts with Terraform to provision and manage AWS and other cloud resources.
• Utilize Ansible for configuration management, ensuring consistent and secure deployments across various environments.
• Automate deployment, scaling, and management of containers using Docker, Kubernetes, and EKS.
• Troubleshoot and resolve infrastructure issues, ensuring minimal downtime and optimal performance.
• Continuously improve and optimize infrastructure and configuration management processes to enhance efficiency and reduce manual interventions.
• Include test scripts for automated performance testing during build, test, and deployment phases.
• Monitor AWS resource consumption and associated costs, implementing cost optimization strategies.

System Monitoring:

• Implement proactive monitoring and logging solutions using tools like Splunk, New Relic, Grafana, CloudWatch, and Apache JMeter to ensure system health and security compliance.
• Implement security monitoring using SonarQube, Tenable Nessus, AWS Security Hub, GuardDuty, and CloudTrail.
• Provide immediate notification and detailed communication in the event of system-wide outages or performance issues.

Security and Compliance:

• Leverage extensive knowledge of NIST standards to maintain the APS security posture.
• Conduct regular security scans (SAST, DAST, IAST) as part of the build processes.
• Execute the CMS Incident Response process for detected security incidents.
• Ensure compliance with HIPAA standards for new features or enhancements.
• Continuous Improvement and Innovation:
• Collaborate with stakeholders to identify and implement innovative approaches throughout the SDLC.
• Conduct performance testing and regression testing after major releases to ensure system stability.
• Utilize DevSecOps processes to enhance speed, agility, and reduce risks.
• Perform detailed analysis of proposed innovations to evaluate their benefits and feasibility.

REQUIRED EXPERIENCE: 

• 5+ years of DevSecOps experience.
• Extensive experience with DevSecOps, cloud infrastructure, containerized application design, security, and systems integration.
• Extensive experience with CI/CD tools (Jenkins, GitHub, Nexus) and system monitoring tools (Splunk, New Relic, Grafana, CloudWatch).
• Expert proficiency with Python, Bash scripting, Linux, Docker, Kubernetes, AWS services (EC2, EKS, RDS, CloudWatch, S3, VPC, etc.), and infrastructure as code tools (Terraform, Ansible).
• Experience in supporting Java/Spring Boot-based microservices and RESTful APIs.
• Experience supporting data analytics tools (AWS QuickSight, Elasticsearch).
• Knowledge of security monitoring tools (AWS Security Hub, GuardDuty, Tenable Nessus).
• Experience with agile methodologies (SAFe, Scrum) and tools (Jira, Confluence).
• Excellent communication skills and ability to work collaboratively in a team environment.
• Strong problem-solving skills and a proactive approach to identifying and addressing issues.
• Ability to work effectively in a fast-paced, agile environment.
• Proven track record of innovation and continuous improvement.
• Candidates must be able to obtain and maintain a Public Trust clearance.
• Candidates must have lived in the United States 3 out of the past 5 years.

PREFERRED EXPERIENCE: 

• Experience in healthcare IT and understanding of regulatory requirements such as HIPAA.
• Experience and/or knowledge of CMS processes and standards.

EDUCATION & CERTIFICATIONS:

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• AWS Certification (preferred)
• SAFe Agile Certification (preferred)