Posted today
Secret
Senior Level Career (10+ yrs experience)
Unspecified
IT - Security
Huntsville, AL (On-Site/Office)•Grand Forks, ND (On-Site/Office)
SAIC
DevSecOps Engineer
SAIC is the Prime supporting the Space Development Agency on the BMC3 Program (Battle Management Command, Control and Communications.)
The primary duties in this role would be supporting DevSecOps pipelines in IL5. The migration to IL6 would most likely come later. Think of SAIC as the glue supporting 3rd party applications that need to be integrated to be apart of the SDA systems.
Required Skills and Qualifications:
· Technical Expertise
· Proficiency with GitLab CI/CD and Git-based workflows to version control and orchestrate pipelines.
· Strong hands-on experience with Kubernetes, container technologies (e.g., Docker), and managing workloads within those platforms.
· Comprehensive understanding of CI/CD pipeline stages (e.g., build, test, security scan, deployment) and best practices for automation.
· Knowledge and experience working in secure environments, specifically Impact Level 6 (IL6) or similarly controlled environments, with a strong understanding of DoD or equivalent compliance frameworks.
· Proficiency in tools for security automation:
· Image Scanning Tools (e.g., Anchore).
· Static Code Analysis Tools (e.g., SonarQube, Checkmarx, or Fortify).
· Software Signing Tools (e.g., Cosign) for image and binary integrity verification.
· Hands-on experience with container hardening and vulnerability remediation.
· Programming and Automation
· Strong scripting and automation skills for automating configuration, build, and deployment processes.
· Proficiency with Infrastructure as Code (IaC) tools like Terraform, Helm, or Ansible for provisioning and managing secure environments.
· Communication and Teamwork
· Ability to effectively communicate complex technical concepts to developers, security teams, and stakeholders.
· Proven experience collaborating in multidisciplinary teams within Agile or DevSecOps methodologies.
DevSecOps Task 1
Demonstrate understanding of the existing IL-5 DevSecOps pipelines by performing a lift and shift of the IL-5 baseline into the development VPC. Then migrate the pipelines and tools to an IL-6 environment.
Acceptance Criteria:
1. Illustrate sufficient understanding of the existing IL-5 DevSecOps pipeline as well as the hosted infrastructure provided by Cloud One cloud provider.
2. Determine if any tools are not allowed in IL-6 enclave.
3. Present tool analysis at internal and external Architecture Review Boards.
4. Develop plan for migration, and if necessary, replacement of IL-5 tools to meet all requirements of the DevSecOps Fundamentals Guidebook version 2.1.
5. Complete implementation of the migration of tools and custom pipelines from IL-5 to IL-6.
6. Perform daily, weekly, and monthly continuous monitoring and patching (ConMon) in the IL-6 enclave.
DevSecOps Task 2
Develop a standalone portal page. This portal will serve as a centralized access point for the BMC3 Application Factory, GitLab, Jira, Confluence, DoD industry knowledge articles in the form of but not limited to Confluence or markdown documentation, DoD DevSecOps Reference Guide enhancements, and automated notifications connected via email and/or other tools (i.e. Mattermost, Jira ticket, or GitLab). All aimed at enhancing 3PAD operational efficiencies through an automated BMC3 Application Factory.
Phasing:
Task 1 is to be complete by the end of the period of performance for BMC3 Milestone 18 (New Milestone 5).
Task 2 is to be complete by the end of BMC3 Milestone 7 (New Milestone 4).
Job Responsibilities:
- Design, deploy, operate, and maintain secure Cloud products and services within a Cloud-based environment to enable development teams to deliver features in the most efficient way possible.
- Maintenance and ongoing development of continuous build/ integration infrastructure.
- Provide Source Control Management/Documentation, create and maintain fully automated CI build processes for multiple environments; write, build and deploy scripts.
- Support CI/CD tools integration, operations, change management, and maintenance. Support full automation of CI/ testing.
- Support policies, standards, guidelines, governance and related guidance for both CI/CD operations and for work of developers.
- Enable successful release management by moving code from Development and Testing environments to Staging and Production.
- Work closely with software developers, production support, and information security to automate and support infrastructure and tooling in cloud-based platforms.
- Provide guidance and apply agile and DevOps/DevSecOps practices to streamline product delivery and reliable operations of product.
- Continuously identify opportunities to automate and save time.
Clearance Requirement:
Secret
Location:
Huntsville, AL or Grand Forks, ND
BMC3 Program Information:
https://www.ssc.spaceforce.mil/Portals/3/SSC_Fact_Sheet_BMC3_FINAL_1.pdf
DevSecOps Engineer
SAIC is the Prime supporting the Space Development Agency on the BMC3 Program (Battle Management Command, Control and Communications.)
The primary duties in this role would be supporting DevSecOps pipelines in IL5. The migration to IL6 would most likely come later. Think of SAIC as the glue supporting 3rd party applications that need to be integrated to be apart of the SDA systems.
Required Skills and Qualifications:
· Technical Expertise
· Proficiency with GitLab CI/CD and Git-based workflows to version control and orchestrate pipelines.
· Strong hands-on experience with Kubernetes, container technologies (e.g., Docker), and managing workloads within those platforms.
· Comprehensive understanding of CI/CD pipeline stages (e.g., build, test, security scan, deployment) and best practices for automation.
· Knowledge and experience working in secure environments, specifically Impact Level 6 (IL6) or similarly controlled environments, with a strong understanding of DoD or equivalent compliance frameworks.
· Proficiency in tools for security automation:
· Image Scanning Tools (e.g., Anchore).
· Static Code Analysis Tools (e.g., SonarQube, Checkmarx, or Fortify).
· Software Signing Tools (e.g., Cosign) for image and binary integrity verification.
· Hands-on experience with container hardening and vulnerability remediation.
· Programming and Automation
· Strong scripting and automation skills for automating configuration, build, and deployment processes.
· Proficiency with Infrastructure as Code (IaC) tools like Terraform, Helm, or Ansible for provisioning and managing secure environments.
· Communication and Teamwork
· Ability to effectively communicate complex technical concepts to developers, security teams, and stakeholders.
· Proven experience collaborating in multidisciplinary teams within Agile or DevSecOps methodologies.
DevSecOps Task 1
Demonstrate understanding of the existing IL-5 DevSecOps pipelines by performing a lift and shift of the IL-5 baseline into the development VPC. Then migrate the pipelines and tools to an IL-6 environment.
Acceptance Criteria:
1. Illustrate sufficient understanding of the existing IL-5 DevSecOps pipeline as well as the hosted infrastructure provided by Cloud One cloud provider.
2. Determine if any tools are not allowed in IL-6 enclave.
3. Present tool analysis at internal and external Architecture Review Boards.
4. Develop plan for migration, and if necessary, replacement of IL-5 tools to meet all requirements of the DevSecOps Fundamentals Guidebook version 2.1.
5. Complete implementation of the migration of tools and custom pipelines from IL-5 to IL-6.
6. Perform daily, weekly, and monthly continuous monitoring and patching (ConMon) in the IL-6 enclave.
DevSecOps Task 2
Develop a standalone portal page. This portal will serve as a centralized access point for the BMC3 Application Factory, GitLab, Jira, Confluence, DoD industry knowledge articles in the form of but not limited to Confluence or markdown documentation, DoD DevSecOps Reference Guide enhancements, and automated notifications connected via email and/or other tools (i.e. Mattermost, Jira ticket, or GitLab). All aimed at enhancing 3PAD operational efficiencies through an automated BMC3 Application Factory.
Phasing:
Task 1 is to be complete by the end of the period of performance for BMC3 Milestone 18 (New Milestone 5).
Task 2 is to be complete by the end of BMC3 Milestone 7 (New Milestone 4).
Job Responsibilities:
- Design, deploy, operate, and maintain secure Cloud products and services within a Cloud-based environment to enable development teams to deliver features in the most efficient way possible.
- Maintenance and ongoing development of continuous build/ integration infrastructure.
- Provide Source Control Management/Documentation, create and maintain fully automated CI build processes for multiple environments; write, build and deploy scripts.
- Support CI/CD tools integration, operations, change management, and maintenance. Support full automation of CI/ testing.
- Support policies, standards, guidelines, governance and related guidance for both CI/CD operations and for work of developers.
- Enable successful release management by moving code from Development and Testing environments to Staging and Production.
- Work closely with software developers, production support, and information security to automate and support infrastructure and tooling in cloud-based platforms.
- Provide guidance and apply agile and DevOps/DevSecOps practices to streamline product delivery and reliable operations of product.
- Continuously identify opportunities to automate and save time.
Clearance Requirement:
Secret
Location:
Huntsville, AL or Grand Forks, ND
BMC3 Program Information:
https://www.ssc.spaceforce.mil/Portals/3/SSC_Fact_Sheet_BMC3_FINAL_1.pdf
group id: 10105424
Accelerating IT transformation in the public sector
