Posted in Other 30+ days ago.
Location: Tysons Corner, VA
Description:
Top IT healthcare firm to Fed Gov
Job Title: Senior Multi-Cloud DevSecOps Engineer
Location: REMOTE
MUST BE A US CITIZEN
NO ACTIVE CLEARANCE REQUIRED
Job Description: We are seeking an experienced Senior Multi-Cloud DevSecOps Engineer to join our innovative team. The ideal candidate will have extensive knowledge across major cloud platforms and a strong background in infrastructure automation, security integration, and cross-functional team leadership.
Key Responsibilities:
1. Leadership and Collaboration:
- Lead cross-functional teams, fostering collaboration between development, operations, and security.
- Mentor team members on DevSecOps best practices and emerging cloud technologies.
- Facilitate knowledge sharing sessions on multi-cloud strategies and security practices.
2. Multi-Cloud Management and Automation:
- Manage and optimize accounts across multiple cloud platforms (e.g., AWS, Azure, GCP, OCI).
* AWS: Implement AWS Organizations for multi-account management and Security Hub for centralized security monitoring.
* Azure: Utilize Azure Policy and Management Groups for governance across multiple subscriptions.
* GCP: Implement resource hierarchy and organization policies for centralized control.
- Automate critical processes using cloud-native tools and third-party solutions.
- Design and implement cross-cloud architectures, ensuring interoperability and optimal resource utilization.
3. Infrastructure and System Administration:
- Demonstrate expertise in both Linux (e.g., Ubuntu, CentOS, Amazon Linux) and Windows server administration.
- Manage and automate virtual machines using various hypervisors (e.g., VMware vSphere, Microsoft Hyper-V, KVM, Proxmox).
- Configure and secure networks across on-premises and multi-cloud environments.
* Implement consistent network security groups and firewall rules across AWS VPCs and Azure VNets.
* Set up and manage VPN connections between on-premises data centers and multiple cloud providers.
4. Infrastructure as Code (IaC) and Configuration Management:
- Utilize multiple IaC tools for different cloud platforms and use cases:
* Terraform for multi-cloud resource provisioning
* AWS CloudFormation for AWS-specific deployments
* Azure Resource Manager (ARM) templates for Azure resources
* Google Cloud Deployment Manager for GCP
- Implement configuration management using tools like Ansible, Chef, Puppet, or SaltStack.
* Use Terraform to provision consistent Kubernetes clusters across AWS EKS and Azure AKS.
* Implement Ansible playbooks for consistent configuration of web servers across different cloud providers.
5. Version Control and Collaborative Workflows:
- Proficient in Git-based workflows, including advanced features like branching strategies and code reviews.
- Experience with multiple Git platforms: GitHub, GitLab, Bitbucket, Azure DevOps Repos.
- Implement GitOps practices for infrastructure and application deployments.
6. Containerization and Orchestration:
- Expertly use Docker for containerization and implement best practices for container security.
- Implement and manage container orchestration using:
* Kubernetes (including managed services like EKS, AKS, GKE)
* Docker Swarm
* AWS ECS/Fargate
* Azure Container Instances
- Develop and maintain local Docker environments for development teams.
* Set up a multi-region Kubernetes cluster using EKS and AKS for high availability.
* Implement automatic scaling and self-healing for containerized applications across cloud providers.
7. CI/CD and Deployment Automation:
- Implement and manage CI/CD pipelines using various tools:
* Jenkins
* GitHub Actions
* GitLab CI
* Azure DevOps Pipelines
* AWS CodePipeline
* Google Cloud Build
- Integrate automated testing, security scanning, and compliance checks into deployment processes.
* Create a multi-stage pipeline that builds, tests, and deploys to staging environments in AWS and production in Azure.
* Implement blue-green deployments for zero-downtime updates across multiple cloud platforms.
8. Security and Compliance:
- Apply a self-auditing mindset to continuously optimize and secure infrastructure across all cloud platforms.
- Create hardened container images compliant with various standards (e.g., DoD STIG, CIS Benchmarks).
- Implement and manage cloud-native security services:
* AWS: GuardDuty, Security Hub, IAM
* Azure: Security Center, Sentinel, Azure AD
* GCP: Security Command Center, Cloud IAM
* Implement a centralized logging and monitoring solution that aggregates data from multiple cloud providers.
* Set up automated compliance checks using AWS Config, Azure Policy, and GCP Security Command Center.
9. API Management and Integration:
- Design and implement secure API architectures across multiple cloud platforms.
- Experience with various API Gateway technologies:
* AWS API Gateway
* Azure API Management
* Kong
* APISIX
- Implement API security best practices, including OAuth, API keys, and rate limiting.
10. AI and Machine Learning Support:
- Understand AI model deployment and optimization techniques across cloud platforms:
* AWS SageMaker
* Azure Machine Learning
* Google Cloud AI Platform
* OnPrem Model hosting
- Implement MLOps practices for model versioning, deployment, and monitoring.
11. Project Management and Collaboration:
- Proficient in multiple project management and collaboration tools:
* Atlassian suite (Jira, Confluence)
* Microsoft Teams and Azure DevOps
- Implement and maintain documentation for multi-cloud architectures and processes.
12. Scripting and Automation:
- Strong proficiency in multiple scripting languages for cross-platform automation:
* Python
* PowerShell
* Bash
* Go
- Develop custom tools and scripts to enhance multi-cloud management and security.
- Examples:
* Create a Python script that audits and reports on resource usage across AWS, Azure, and GCP.
* Develop a PowerShell module for automated user management across on-premises Active Directory and cloud identity providers.
Required Skills and Qualifications:
- 7+ years of experience in DevOps, with a strong focus on multi-cloud environments and security integration (DevSecOps).
- Extensive experience with at least two major cloud platforms (AWS, Azure, GCP, OCI).
- Proficiency in multiple Infrastructure as Code tools (Terraform, CloudFormation, ARM templates).
- Strong knowledge of containerization technologies (Docker) and orchestration platforms (Kubernetes, Docker Swarm).
- Experience with various CI/CD tools and methodologies across different cloud platforms.
- Solid understanding of network security principles and implementation in multi-cloud environments.
- Expertise in at least two scripting languages (Python, PowerShell, Bash, or Go).
- Familiarity with Agile methodologies and various project management tools.
Preferred Qualifications:
- Multiple cloud certifications (e.g., AWS Certified DevOps Engineer, Azure DevOps Engineer Expert, Google Cloud Professional DevOps Engineer).
- Experience with multi-cloud cost optimization and FinOps practices.
- Knowledge of AI/ML deployment and optimization techniques across different cloud platforms.
- Familiarity with multiple compliance frameworks (HIPAA, PCI-DSS, GDPR) in addition to DoD STIG.
This role offers an exciting opportunity to work at the forefront of multi-cloud DevSecOps, driving innovation, security, and efficiency across diverse technology environments. The successful candidate will play a crucial role in shaping our organization's cloud strategy and ensuring the delivery of robust, secure, and scalable solutions across multiple platforms.
The Judge Group Inc. |
The Judge Group Inc. |
CohnReznick |