DevSecOps Cloud Engineer at The Judge Group Inc. in Tysons Corner, Virginia

Job Description:

Location: Tysons Corner, VA

Description:
Top IT healthcare firm to Fed Gov


Job Title: Senior Multi-Cloud DevSecOps Engineer


Location: REMOTE


MUST BE A US CITIZEN


NO ACTIVE CLEARANCE REQUIRED


Job Description: We are seeking an experienced Senior Multi-Cloud DevSecOps Engineer to join our innovative team. The ideal candidate will have extensive knowledge across major cloud platforms and a strong background in infrastructure automation, security integration, and cross-functional team leadership.


Key Responsibilities:


1. Leadership and Collaboration:


- Lead cross-functional teams, fostering collaboration between development, operations, and security.


- Mentor team members on DevSecOps best practices and emerging cloud technologies.


- Facilitate knowledge sharing sessions on multi-cloud strategies and security practices.


2. Multi-Cloud Management and Automation:


- Manage and optimize accounts across multiple cloud platforms (e.g., AWS, Azure, GCP, OCI).


* AWS: Implement AWS Organizations for multi-account management and Security Hub for centralized security monitoring.


* Azure: Utilize Azure Policy and Management Groups for governance across multiple subscriptions.


* GCP: Implement resource hierarchy and organization policies for centralized control.


- Automate critical processes using cloud-native tools and third-party solutions.


- Design and implement cross-cloud architectures, ensuring interoperability and optimal resource utilization.


3. Infrastructure and System Administration:


- Demonstrate expertise in both Linux (e.g., Ubuntu, CentOS, Amazon Linux) and Windows server administration.


- Manage and automate virtual machines using various hypervisors (e.g., VMware vSphere, Microsoft Hyper-V, KVM, Proxmox).


- Configure and secure networks across on-premises and multi-cloud environments.


* Implement consistent network security groups and firewall rules across AWS VPCs and Azure VNets.


* Set up and manage VPN connections between on-premises data centers and multiple cloud providers.


4. Infrastructure as Code (IaC) and Configuration Management:


- Utilize multiple IaC tools for different cloud platforms and use cases:


* Terraform for multi-cloud resource provisioning


* AWS CloudFormation for AWS-specific deployments


* Azure Resource Manager (ARM) templates for Azure resources


* Google Cloud Deployment Manager for GCP


- Implement configuration management using tools like Ansible, Chef, Puppet, or SaltStack.


* Use Terraform to provision consistent Kubernetes clusters across AWS EKS and Azure AKS.


* Implement Ansible playbooks for consistent configuration of web servers across different cloud providers.


5. Version Control and Collaborative Workflows:


- Proficient in Git-based workflows, including advanced features like branching strategies and code reviews.


- Experience with multiple Git platforms: GitHub, GitLab, Bitbucket, Azure DevOps Repos.


- Implement GitOps practices for infrastructure and application deployments.


6. Containerization and Orchestration:


- Expertly use Docker for containerization and implement best practices for container security.


- Implement and manage container orchestration using:


* Kubernetes (including managed services like EKS, AKS, GKE)


* Docker Swarm


* AWS ECS/Fargate


* Azure Container Instances


- Develop and maintain local Docker environments for development teams.


* Set up a multi-region Kubernetes cluster using EKS and AKS for high availability.


* Implement automatic scaling and self-healing for containerized applications across cloud providers.


7. CI/CD and Deployment Automation:


- Implement and manage CI/CD pipelines using various tools:


* Jenkins


* GitHub Actions


* GitLab CI


* Azure DevOps Pipelines


* AWS CodePipeline


* Google Cloud Build


- Integrate automated testing, security scanning, and compliance checks into deployment processes.


* Create a multi-stage pipeline that builds, tests, and deploys to staging environments in AWS and production in Azure.


* Implement blue-green deployments for zero-downtime updates across multiple cloud platforms.


8. Security and Compliance:


- Apply a self-auditing mindset to continuously optimize and secure infrastructure across all cloud platforms.


- Create hardened container images compliant with various standards (e.g., DoD STIG, CIS Benchmarks).


- Implement and manage cloud-native security services:


* AWS: GuardDuty, Security Hub, IAM


* Azure: Security Center, Sentinel, Azure AD


* GCP: Security Command Center, Cloud IAM


* Implement a centralized logging and monitoring solution that aggregates data from multiple cloud providers.


* Set up automated compliance checks using AWS Config, Azure Policy, and GCP Security Command Center.


9. API Management and Integration:


- Design and implement secure API architectures across multiple cloud platforms.


- Experience with various API Gateway technologies:


* AWS API Gateway


* Azure API Management


* Kong


* APISIX


- Implement API security best practices, including OAuth, API keys, and rate limiting.


10. AI and Machine Learning Support:


- Understand AI model deployment and optimization techniques across cloud platforms:


* AWS SageMaker


* Azure Machine Learning


* Google Cloud AI Platform


* OnPrem Model hosting


- Implement MLOps practices for model versioning, deployment, and monitoring.


11. Project Management and Collaboration:


- Proficient in multiple project management and collaboration tools:


* Atlassian suite (Jira, Confluence)


* Microsoft Teams and Azure DevOps


- Implement and maintain documentation for multi-cloud architectures and processes.


12. Scripting and Automation:


- Strong proficiency in multiple scripting languages for cross-platform automation:


* Python


* PowerShell


* Bash


* Go


- Develop custom tools and scripts to enhance multi-cloud management and security.


- Examples:


* Create a Python script that audits and reports on resource usage across AWS, Azure, and GCP.


* Develop a PowerShell module for automated user management across on-premises Active Directory and cloud identity providers.


Required Skills and Qualifications:


- 7+ years of experience in DevOps, with a strong focus on multi-cloud environments and security integration (DevSecOps).


- Extensive experience with at least two major cloud platforms (AWS, Azure, GCP, OCI).


- Proficiency in multiple Infrastructure as Code tools (Terraform, CloudFormation, ARM templates).


- Strong knowledge of containerization technologies (Docker) and orchestration platforms (Kubernetes, Docker Swarm).


- Experience with various CI/CD tools and methodologies across different cloud platforms.


- Solid understanding of network security principles and implementation in multi-cloud environments.


- Expertise in at least two scripting languages (Python, PowerShell, Bash, or Go).


- Familiarity with Agile methodologies and various project management tools.


Preferred Qualifications:


- Multiple cloud certifications (e.g., AWS Certified DevOps Engineer, Azure DevOps Engineer Expert, Google Cloud Professional DevOps Engineer).


- Experience with multi-cloud cost optimization and FinOps practices.


- Knowledge of AI/ML deployment and optimization techniques across different cloud platforms.


- Familiarity with multiple compliance frameworks (HIPAA, PCI-DSS, GDPR) in addition to DoD STIG.


This role offers an exciting opportunity to work at the forefront of multi-cloud DevSecOps, driving innovation, security, and efficiency across diverse technology environments. The successful candidate will play a crucial role in shaping our organization's cloud strategy and ensuring the delivery of robust, secure, and scalable solutions across multiple platforms.

Contact: ckelly@judge.com


This job and many more are available through The Judge Group. Find us on the web at www.judge.com Apply Now