RedHat DevSecOps Engineer

$96,600.00/daily - $/daily;
Estimated starting salary range: USD $96,600.00/Yr.

- USD $/Yr. Salary is based on skills, experience, internal equity and market data.

Scientific Research Corporation (SRC) is seeking a Software Engineer to support our Overmatch Software Armory (OSA) Tools Support contract at a facility in San Diego, CA.

• Leading the definition of system security requirements, including but not limited to the authorization boundary, security domains, and classification of data.
• Designing the security interfaces, security interconnections, and trust relationships between system components and external systems.
• Implementing system security designs using commercial‑off‑the‑shelf (COTS), government‑off‑the‑shelf (GOTS), and open‑source hardware and software.
• Overseeing hardening and configuration of systems and components in accordance with various Federal, Department of Defense (DoD), and Intelligence Community (IC) guidance.
• Managing security assessments of systems and components using industry‑standard automated vulnerability‑scanning tools such as Tenable Nessus and SCAP.
• Coordinating security assessments to identify control failures and recommend corrective actions.

• Minimum of a bachelor's degree in Systems Engineering, Cyber Security Engineering, Computer Engineering, Computer Science, Information Systems, or a related discipline and 9‑12 years of related work experience; or a master's degree in a related discipline and 7 years of related work experience; or an equivalent combination of education and experience.
• Active security clearance; CSWF II (Linux);
  CompTIA Security+ Certified;
  Privileged Access Agreement (PAA).
• Red Hat Certified System Administrator or CompTIA Linux+ certification.
• Seven+ years of experience with Red Hat Enterprise Linux or CoreOS, including container platform management, app creation, cluster scaling, and networking.
• Five+ years of experience developing and managing Kubernetes‑based storage and autoscaling solutions, and building CI/CD pipelines.
• Seven+ years of experience in network design and troubleshooting for security system interoperability.
• Seven+ years of experience as a system administrator working with data‑center migrations, server upgrades, OS and firmware patching.
• Five+ years of experience monitoring security bulletins and alerts from vendor partners.
• Experience using Ansible for configuration management, system administration, or security compliance automation.
• Experience with DoD security implementation (e.g., STIG) and tools such as HBSS‑ACAS.
• Experience as part of an Agile development team, with strong communication in fast‑paced environments.

• Experience with or knowledge of DEVSECOPS principles and ability to advise cross‑domain teams.
• Expert knowledge of Windows and RHEL administration; deep knowledge of RHEL and Windows distros.
• Familiarity with OSS tools for managing, monitoring, and troubleshooting Linux infrastructure.
• Red Hat Open Shift Administrator or experience in Open Shift configuration.
• Experience with AWS, Azure, or other cloud platforms as a practitioner or architect.
• Experience with Service‑Oriented Architecture, Microservice Architecture, or REST architectures.
• Two+ years configuring and managing F5 firewall infrastructure in an enterprise environment.
• Experience managing web server architecture, including Apache Tomcat on RHEL.
• Experience with GIT, Helm, Fortify, Sonar Qube, Chef, Docker, Open Shift, Kubernetes, OKTA, F5 APM, and ADFS.
• Experience administering servers, backups, and monitoring in complex network environments.
• Experience with business continuity and disaster recovery; installing and rebuilding servers and configuring hardware, peripherals, and services.
• Experience with web technologies such as HTML5, XML, and SOAPUI.
• Experience with middleware technologies Rabbit
  
  MQ, Java, and/or .NET runtime.
• Experience using configuration management systems such as GIT, Apache SVN, or AWS Code Commit.
• Experience with network analysis software such as SD Elements, Splunk, Sniffer, Wireshark, or Microsoft Network Monitor.
• Certifications in cybersecurity:
  Certified Cloud Security…