DevSecOps Engineer

Emprise Corporation is a fast‑growing company that has been serving government and commercial clients for over 38 years. We are the industry leader in Predictive Maintenance and Condition Monitoring by offering a wide set of capabilities that allow us to provide premier products and services that help our clients operate more effectively and efficiently. We’re looking for a talented Dev Sec Ops  Engineer to join our Team in Chesapeake, VA.

Reporting to the CIO, this position will serve as the central day‑to‑day integrator across Engineering/Operations, Systems Development, and IT Operations and Security.

• Testing Environment Setup and Management:
  Design and create standardized, efficient, and security‑focused testing environments, developing manual and automated testing configurations for internal and external systems.
• Provide setup, configuration, and support for various releases of Apache Tomcat, Apache2 and IIS configurations, multiple web applications, RDBMS’s with various database systems and versions. Understand the configurations and properties of each and the interaction required between application layers. Support database configuration, administration, and content of databases for internal test platforms to mirror various remote customer sites’ configurations.
• Provide full stack application support to ensure that all components are configured properly, and interactions are secure, error free and optimized. Provide setup, configuration, and support for external performance testing events in secure labs, including event coordination and execution with customer personnel.
• Security and
  
  Risk Management:
  
  Provide support for Risk Management Framework (RMF), including Boundary Diagrams, Authority to Operate (ATO), and Ports Protocols Services Management (PPSM). Maintain a thorough knowledge of the content within.
• Technical Leadership in the creation, deployment, and management of PKI certificates (DoD, Self‑Signed, etc.) for both hardware and software environments. Maintain awareness of vulnerabilities and security concerns of test and production environments, including internal code and its dependencies. Provide remediation support for issues as required.
• Provide input on best practices for security and operations in shift‑left development process.
• Application and Device Deployment:
  Coordinate Dev Ops principles into developing standardized, secure, compliant and repeatable build pipelines.
• Manage and support application deployments to remote customer sites using delivery mechanisms such as proprietary remote transfer, hard copy (CD/DVD/etc.), and future deployment systems. Coordinate with responsible internal and third‑party agents for packaging and testing software installations, patches and other distributions.
• Miscellaneous day‑to‑day duties:
  Create, update, and present product environment configurations and supporting systems.
• Collect and analyze server and application logs of various types both locally and remotely. Provide recommendations and potential corrective actions when problems are found.
• Communicate regularly with internal and customer points of contact (verbal and written).

• BS in an IT‑related field (or equivalent experience) and 10+ years of Systems experience.

• Strong fundamentals in full‑stack systems integration, network operations, Apache Tomcat and application server skills.
• Experience in system administration (Windows Server/Active Directory & Linux).
• Knowledge of Public Key Infrastructure and various authentication mechanisms.
• High level programming and scripting experience such as:
  Java, Powershell, etc.
• Experience with SQL at and RDBMS concepts and integration.
• Experience with build/test/release management, general automation, and security processes in CI/CD pipeline.
• Knowledge of Dev Sec Ops  tools such as:
  Git, Jenkins, Nessus, Nexus, Fortify, SIEMs, Black Duck, etc.
• Ability to obtain and maintain a DoD Security Clearance.
• Strong verbal, written, and communication skills.
• Ability to occasionally support work onboard maritime vessel pier side.

• Experience in CMMC 2.0, NIST 800‑171, Microsoft 365 GCCH, Purview, Azure, Intune.
• Experience with containers and VMs with regard to Dev Sec Ops ‑optimized environments.
• Experience with cloud platform services.
• Experience with Linux and in one or more scripting languages (e.g., Bash).
• Programming experience with Windows installer packages (e.g., NSIS).
• Programming experience with Tomcat internals (e.g., Valves/Filters, etc.).
• Security configuration and operations experience with OpenSSL and Apache Tomcat tcnative.
• Security+ Certification.