DevSecOps Engineer

Company Description
Govini builds software to accelerate the Defense Acquisition Process. Ark, Govini’s flagship product, is a suite of AI-enabled applications, powered by integrated government and commercial data, to accelerate the entire spectrum of Defense Acquisition, including Supply Chain, Science & Technology, Production, Sustainment, and Modernization. With Ark, the Acquisition community eliminates slow, manual processes and gains the ability to rapidly imagine, produce, and field critical warfighting capabilities. Ark transforms Defense Acquisition into a strategic advantage for the United States. Govini has offices in Arlington, Virginia, and Pittsburgh, Pennsylvania.
Job Description
We are seeking a skilled and dedicated DevSecOps Engineer to join our Engineering team. As a DevSecOps Engineer at Govini, you will be essential to securing, operating, and continuously deploying to U.S. Government Accredited environments.
In order to do this job well, you must be obsessed with quality, and efficiency, and love working with diverse technologies. You have a strong understanding of DevSecOps principles, automation, and continuous integration/continuous delivery (CI/CD). Our ideal candidate is someone who is energized by building scalable technology to support the defense and intelligence communities.
This is a full-time team member position, working in the office at our Pittsburgh, PA location.

Scope of Responsibilities

• Secure, operate, and continuously deploy to FedRAMP and IL5 environments.
• Document security processes, vulnerabilities, remediation actions, and compliance measures.
• Partner with engineers to interpret security requirements and plan effective control implementations.
• Integrate security tools into the CI/CD pipeline, run security scans, and remediate vulnerabilities.
• Translate and synthesize complex concepts and architectures into a clear body of evidence artifacts, including System Security Plans (SSP) and architecture diagrams.
• Build and support a CI/CD infrastructure utilizing GitLab, Jenkins, Helm, and Kubernetes.
• Serve as a security Subject Matter Expert (SME) and govern architectures to ensure they remain within the scope of an ATO.

Qualifications

• U.S. Citizenship is required

Required Skills:
• Bachelor's degree in Computer Science, Mathematics or equivalent experience
• Linux/Unix experience, including command line and shell scripting
• Hands-on operational AWS/GCP/Azure experience
• Experience with cybersecurity frameworks (FedRAMP, FISMA, DoD SRG,  NIST 800-171)
• Experience building and maintaining CI/CD pipelines with Jenkins, Gitlab CI, or related technologies
• Experience with Systems Monitoring/Alerting (Splunk, PagerDuty, Prometheus, Alertmanager, Grafana)
• Experience with infrastructure as code 
• Current possession of a U.S. security clearance, or the ability to obtain one with our sponsorship

Desired Skills:
• Experience maintaining compliance within an accredited environment, ensuring all systems and processes operate according to the parameters of the granted ATO.
• Programming experience with any of the following languages: Golang, Java, Python, Groovy, Bash, or Ruby
• Experience with container-based architectures (Docker, Kubernetes, Helm)Experience deploying and supporting a microservices architecture
• Experience in or exposure to the nuances of a startup or other entrepreneurial environment
• Familiarity with test automation, including security testing and performance testing

We firmly believe that past performance is the best indicator of future performance.  If you thrive while building solutions to complex problems, are a self-starter, and are passionate about making an impact in global security, we’re eager to hear from you.
Govini is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.