What are the responsibilities and job description for the Senior DevSecOps Platform Engineer position at MANTECH?
MANTECH seeks a motivated, career and customer-oriented Sr. DevSecOps Platform Engineer to join our team in Lexington Park, MD. This is an onsite position.
The Senior DevSecOps Platform Engineer builds and maintains the secure internal developer platforms (IDP), automation, and infrastructure required to ship software reliably. They will bridge software development, operations, and cybersecurity by embedding automated security controls into continuous integration/continuous deployment (CI/CD) pipelines and Infrastructure as Code (IaC)
Responsibilities Include But Are Not Limited To
The Senior DevSecOps Platform Engineer builds and maintains the secure internal developer platforms (IDP), automation, and infrastructure required to ship software reliably. They will bridge software development, operations, and cybersecurity by embedding automated security controls into continuous integration/continuous deployment (CI/CD) pipelines and Infrastructure as Code (IaC)
Responsibilities Include But Are Not Limited To
- Platform Engineering: Design, build, and maintain scalable internal developer platforms, Hybrid Cloud environments (VMWare, OpenShift, AWS, Azure, GCP), and container orchestration systems (Kubernetes).
- DevSecOps: Building and maintaining CI/CD pipelines for a large enterprise using Jenkins, GitLab, or similar tools.
- Security Automation: Wire security with a shift-left approach to automate vulnerability scanning, secrets detection, and dependency checks within the CI/CD pipeline.
- Infrastructure as Code (IaC): Codify policies and provision resources programmatically using tools like Terraform, Ansible, or Bicep to enforce least-privilege access and secure configurations.
- Monitoring & Observability: Implement logging, monitoring, and alerting systems to detect misconfigurations or anomalies in real-time.
- Collaboration & Advocacy: Partner with software and security teams to resolve vulnerabilities, promote a culture of shared security responsibility, and improve developer experience.
- Master’s degree in Computer Science, Engineering, Math, or a related field; Bachelor’s Degree (with similar curriculum focus) plus 4 years additional work experience may be substituted.
- 8 years of experience in software systems development, DevOps / DevSecOps, Site Reliability Engineering (SRE), or platform engineering.
- Proficient in major cloud providers (AWS, Azure, GCP) and Infrastructure as Code (IaC) utilizing Terraform and Ansible.
- Extensive experience building robust CI/CD pipelines (Harness, Jenkins, GitLab) integrated with security tooling (SAST, DAST, SCA).
- Expertise in Docker and Kubernetes, including specialized container environments like Alpine Linux.
- Skills with tool integration and script automation using Python, Go, and Bash within Linux (RHEL, Ubuntu, CentOS) and Windows environments.
- Understanding of risk and compliance frameworks, including SOC2 and FedRAMP/DoD.
- Knowledge of Integrating generative AI technologies into DevSecOps lifecycle
- Tools Experience: Proficiency with monitoring tools such as Dynatrace, Datadog, New Relic, Grafana, Splunk, SolarWinds, AppDynamics.
- Active Secret clearance required with the ability to upgrade to Top Secret.
- Must be able to remain in a stationary position 50%
- The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations