• Location: Colorado springs, Colorado
  • Type: Contract To Hire
  • Job #1994

Title:  Linux and Hardware Administrator

 

 

Company Overview:

Cornerstone Defense, in partnership with our military, intelligence, and civil government customers, supports U.S. operations worldwide through the use of many different types of intelligence, satellite, and cyber technologies. Cornerstone’s Intelligence Sector provides solutions to the United States Government for information collection, operations, exploitation and dissemination, and research activities. Our Team specializes in software development, cloud architecture, systems and network engineering, systems integration, agile management, as well as targeting operations and intelligence analysis. Our support to our mission customers includes cyber network operations, exploitation and defense, signals intelligence, human intelligence, and critical missions and networks.

Ability to Telecommute No telecommuting

Colorado Springs CO.

DevSecOps Engineer to enable mission accomplishment by supporting cloud cybersecurity of respective cloud service provider and FedRamp environments providing cloud security services to Government Agencies within commercial or private cloud environment or any hybrid or physical and virtual resources. The ideal candidate for this job will be an experienced DevSecOps engineer who is goal-oriented and strives to exceed expectations.

Job Description:

Determines, develops, or manages DevSecOps and Agile deployment solutions and has experience serving as the engineer of complex technology implementations in a cloud-based or hybrid cloud product-centric environment.

Responsible for bridging the gap between legacy development or operations team and work toward a shared culture and vision.

Works to provide stakeholders and developers with improved automation tools, ensuring system uptime and performance.

Deploys and manages services configuration and automation solutions using:

Infrastructure as a Service (IaaS)

Provider Architecture

DevSecOps supporting solution

Uses Scripting or basic programming skills to:

Solve problems

Manage installation

Management of open source monitoring tools

Configuration management tools (e.g., Puppet, Chef, Ansible, Salt)

Architecture for continuous integrations and deployment

Continuous monitoring

Expert knowledge and experience with containerization technologies.

Performs and supports operations and maintenance of applications and solutions.

 

REQUIRED SKILLS:

Deep understanding of how security impacts each stage of the development pipeline and the final product or service.

Have the technical proficiencies and familiarity in DevSecOps culture, and have a keen interest in cybersecurity and up-to-date knowledge of threats and trends.

Ability to be team players with proficient communication skills and with thorough understanding of how security impacts each development phase and services.

Experience with many tools and techniques like risk assessment, threat modeling, and cybersecurity to detect and analyze the threats.

Experience in designing countermeasures to identified security risks, security controls based on cybersecurity principles and tenets, integration of hardware and software solutions.

Skill in discerning the protection needs (i.e., security controls) of information systems and networks, evaluating the adequacy of security designs, conducting audits or reviews of technical systems.

Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation), integrating and applying policies that meet system security objectives.

Knowledge of and practical experience of integration of COTS or open source tools

Personality traits: Naturally curious and inquisitive nature; persistent and determined; loves solving problems and puzzles; analytically rigorous; uncompromising integrity

Demonstrated ability to document processes

Proficiency with MS Office Applications

Must be able to work collaboratively across teams and physical locations

Willing to work rotating shifts

 

REQUIRED EDUCATION/EXPERIENCE/CERTIFICATIONS:

 

The DevSecOps Engineer, provides:

Technical/Management leadership on major tasks or technology assignments.

Responsible for software development, recognizing the security threats, and configuring the network infrastructure and up-to-the-minute details of cybersecurity threats and the latest software.

Possess knowledge of the implementation of risk assessment techniques and the latest security best practices.

Has domain and expert technical knowledge.

Come up with customized tools for security purposes in DevSecOps.

Well-versed in at least one of the programming languages like Java, PHP, Python, Ruby, and Perl.

Possess knowledge of AWS, Docker, Kubernetes, and how to implement developer tools such as GitHub and Dependency management.

Has sufficient knowledge to operate various configuration management tools such as Chef, Puppet, Ansible, and Salt.

Has sufficient knowledge with DevSecOps on AWS, Cloud Computing (IaaS, PaaS, SaaS), Identity Access Management (IAM), Infrastructure as a Code (IaC) and its security, Patch management, Secure Monitoring, and compliance.

Interactions involve client negotiations and interfacing with senior management.

Decision-making and domain knowledge may have a critical impact on overall project implementation.

May supervise others.

Requirement is for 5 or more years of experience directly relating to role of the labor category.

The position requires a Bachelor's degree in Computer Science, or Information Systems, or Information Assurance, or Cybersecurity, Engineering, or a related STEM discipline.

The DevSecOps engineer must possess at least one relevant professional designation or related advanced IT certification, but not limited to the following:

CertifiedInformationSystems Security Professional(CISSP)

Certified DevSecOps Professional (CDP)

Certified DevSecOps Expert (CDE)

CISSP Information Systems Security Architecture Professional (CISSP-ISSAP)

CISSP Information Systems Security Engineering Professional (CISSP-ISSEP)

Systems Security Certified Practitioner (SSCP)

GIACCertifiedIncidentHandler(GCIH)

GIAC Network Forensic Analyst (GNFA)

GIAC Intrusion Analyst (GCIA)

 

DESIRED SKILLS:

Experience working on a 24x7x365 watch desk environment

Experience with industry standard help desk tools

SIEM content Analysis, Development and Testing

Experience with SIEMS tools

Familiarity with packet analysis to include: HTTP Headers & Status codes, SMTP Traffic & Status codes, FTP Traffic & Status Codes

Excellent written and verbal communication skills

Prior experience working in any of the following:

Security Operations Center (SOC)

Network Operations Center (NOC)

Computer Incident Response Team (CIRT)

Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)

Experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks, applications and one or more of the following:

Experience in computer intrusion analysis and incident response

Working knowledge of Intrusion detection/protection systems

Knowledge and understanding of network devices, multiple operating systems, and secure architectures

Working knowledge of network protocols and common services

System log analysis

DESIRED CERTIFICATIONS:

Certified DevSecOps Architect (CDA)

Certified DevSecOps Leader (CDL)

Certified Wireless Network Expert (CWNE)

GIACCertified Enterprise Defender (GCED)

GIAC Security Expert (GSE)

GIAC Information Security Professional (GISP)

CertifiedInformation Security Manager(CISM)

Certified Ethical Hacker (CEH)

Certified Network Defense Architect (CNDA)

ITIL v3 Foundations certification

GIAC Information Security Fundamentals (GISF)

 

REQUIRED Clearance:

US Citizen and a TS/SCI clea

Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

We are uploading your application. It may take a few moments to read your resume. Please wait!