DevSecOps Engineer – DoD

🕒 il y a 9 jours

🇺🇸 États-Unis – Télétravail

💵 $140 000 - $175 000 / an

⏰ Temps Plein

🟡 Intermédiaire

🟠 Senior

⛑ Ingénieur DevOps & SRE

🦅 Parrain de Visa H1B

Cette entreprise a parrainé des visas H1B par le passé.

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

RAPIDFORT

Site WebLinkedInTous les Emplois

51 - 200 employés

Fondée en 2020

🔒 Cybersecurity

☁️ SaaS

🤝 B2B

Cybersecurity • SaaS • B2B

RAPIDFORT est une entreprise de sécurité de la chaîne d'approvisionnement logicielle qui propose une plateforme SaaS pour sécuriser les applications conteneurisées, de la construction à l'exécution. Elle fournit des images de base avec quasiment zéro CVE, des scans d'images CI/CD et des profils d'exécution (SBOM/RBOM), une remédiation automatique des CVE, un renforcement en temps réel et une réduction de la surface d'attaque, ainsi qu'une automatisation de la conformité aux normes telles que FedRAMP, SOC 2 et CMMC. La plateforme est destinée aux équipes d'ingénierie et de sécurité des entreprises pour automatiser la remédiation des vulnérabilités, accélérer les versions sécurisées et maintenir une protection continue en production.

Description

• Design and maintain Kubernetes-based infrastructure, including cluster provisioning, RBAC configuration, network policy, and workload management • Package and deploy applications using Helm charts; maintain chart repositories and manage release lifecycle across environments • Implement and enforce policy controls using Istio service mesh, OPA Gatekeeper, Kyverno, and related Kubernetes admission controllers • Build and maintain CI/CD pipelines using GitLab CI, GitHub Actions, Jenkins, or equivalent tooling; integrate automated security scanning and compliance gates • Deploy and operate workloads on AWS GovCloud and Azure Government; architect for high availability, disaster recovery, and cross-region compliance requirements • Manage and harden container images; integrate with Iron Bank, Platform One, and other DoW-approved registry sources • Configure and maintain observability stacks including Prometheus, Grafana, and Datadog; develop alerting, dashboards, and SLO frameworks • Participate in ATO processes, support STIG/CIS compliance scanning, and contribute to System Security Plans (SSPs) and documentation artifacts • Collaborate with development, security, and program teams to establish and refine DevSecOps practices across the software delivery lifecycle • Support air-gapped and classified environment deployments; design solutions for offline image transfer, registry mirroring, and artifact management • Coordinate with government platform teams and managed service providers to integrate and sustain vendor tooling within approved DoD software factories

🎯 Exigences

• 4+ years of hands-on experience with Kubernetes in production environments • Demonstrated experience deploying and managing applications via Helm in multi-environment configurations • Working knowledge of Istio, OPA Gatekeeper, Kyverno, or equivalent Kubernetes policy and service mesh tooling • Experience with at least one major CI/CD platform: GitLab CI, GitHub Actions, Jenkins, or equivalent • Hands-on experience with AWS and/or Azure cloud platforms, including IAM, networking, storage, and managed Kubernetes services (EKS, AKS) • Experience with container image workflows: building, scanning, hardening, and distributing images via OCI registries • Familiarity with monitoring and observability tools including Prometheus, Grafana, and/or Datadog • Experience with Single Sign-On (SSO) and identity federation; familiarity with Keycloak or equivalent OIDC/SAML providers • Active DoW security clearance (Secret or higher)

🏖️ Avantages

• Benefits + Equity: Where applicable