Overview
DevSecOps Engineer Team Lead
Blackwatch International Corporation (Blackwatch), a small business founded in 2010, is a small business dedicated to supporting Federal business and national security objectives. Based in McLean, VA, with offices in Sacramento, CA, Blackwatch invests in innovation and quality for our customers and staff, holding corporate-level ISO 9001:2015, ISO/IEC 27001:2013, and ISO/IEC 20000-1:2018 quality certifications. We are a leading provider of information technology (IT) infrastructure, cybersecurity, DevSecOps, data exploitation, and engineering services, specializing in large and complex projects. Blackwatch is dedicated to growth and offers a dynamic working environment with multiple opportunities for advancement.
Position Title: DevSecOps Engineer Team Lead
Position location: Remote / Alexandria, VA
Position type: Regular Full Time
Years of experience: 5 , Senior
Security Clearance: Secret
Citizenship: U.S. Citizen
Summary/Objective
Blackwatch International is seeking a DevSecOps Engineer Team Lead in support of our Federal client in Alexandria, VA. The DevSecOps Engineer Team Lead will provide software assurance/security and development engineering services to support the development and coding of new (or modify existing) applications, software, or specialized programs following software assurance best practices.
Responsibilities
- Analyze user needs and software requirements to develop a DevSecOps sandbox with security vulnerability reporting capability including determining the feasibility of design within time and cost constraints.
- Apply coding and testing standards, security-testing tools to identify security-coding flaws (including ‘fuzzing’ static-analysis code scanning tools), run-time/dynamic application testing, and Infrastructure-as-Code (IaC) in architecting and implementing a DevSecOps sandbox solution.
- Coordinate with teams across the enterprise on the migration of existing IT services to the cloud; identify security technical requirements, potential problems, and issues, and participate on agile software development teams.
- Evaluate factors such as reporting formats required, cost constraints, and need for security restrictions to determine hardware configurations.
- Participate in network and system design to ensure implementation of appropriate systems security policies, designs and implement systems security and data assurance.
- Establish initial Security Policy Baselines for each security tool within the DevSecOps Pipeline.
- Establish CI/CD gates to ensure software is secure prior to production deployment.
- Develop Security Tool reporting for development teams as well as the enterprise.
Qualifications
REQUIREMENTS:
- Five (5) years of experience in the Cyber Security field.
- Two (2) years or more of hands-on experience in implementing/maintaining security in a CI/CD pipeline. Experience in the design and automation of security tools and processes.
- Secret Clearance
- U.S. Citizen
- The ideal candidate will possess a Bachelor of Science in computer engineering, computer science, IT, or cyber security. Candidates may possess another degree, if the resume is clear that the degree addressed security operations, cyber security engineering, information assurance, or information technology.
- One of the following certifications required within 180 days from start date:
- Certified Cloud Security Professional (CCSP)
- Certified Cloud Security Knowledge (CCSK)
- Certified Secure Software Lifecycle Professional (CSSLP)
- Certified Ethical Hacker (CEH)
Blackwatch International Corporation is an Equal Opportunity Employer/Affirmative Action Employer, and all qualified applicants will receive consideration for employment regardless of race, color, religion, sex, national origin, disability status, protected Veteran Status, or any other characteristics protected by law. We are an eVerify participating employer.