Description

Sev1Tech is looking for an Software Developer with DevSecOps experience to support the Rapid Response and Integration (R2I) project with expertise in technologies and capabilities in the areas of design, integration, test and evaluation, deployment, cybersecurity, and maintenance of new software applications for the United States Marine Corps (USMC).

This position requires onsite presence at the customer location (NIWC PAC San Diego Pt Loma Campus) three-four days per week.

• Support the development of new code, updates, including security updates, and fixes to software applications following the SCRUM software development process.
• Directly support the analysis, closure, and verification of Security Technical Implementation Guide (STIG) findings
• Design, develop, and implement a scalable and secure DevSecOps infrastructure, including CI/CD pipelines, version control systems, and automated testing frameworks.
• Implement automated deployment and configuration management processes and containerization technologies (e.g., Docker, Kubernetes).
• Develop and enforce best practices and standards for code quality, application security, and performance optimization, ensuring adherence to federal guidelines and compliance requirements.
• Collaborate with cybersecurity personnel to identify and implement appropriate security controls, automated security scans, and vulnerability assessments throughout the software development lifecycle.
• Update software development processes and procedures where necessary
• Support updates to documentation for software applications. Documentation will include but is not limited to Software Design Description (SDD), System Administrators Manual (SAM), User Quick Reference Guide (UQRG), Admin Quick Reference Guide (AQRG), Software Version Description (SVD), Software Test plans, Software Test procedures, and Software Test Reports.
• Support updates to unit and integration tests and pipelines corresponding to software updates
• Assist in establishing, developing, and maintaining the platform and infrastructure environment necessary to host the application for development, test, and stage.
• Salary Range: $140-160K

• B.S. in Computer Science, Math, or similar degree
• Proven experience as a Software Developer, DevOps Engineer, or similar role, preferably in a federal or government contracting environment. Experience in line with the following:
  • Strong software development experience working in an Agile Scrum environment
  • Analysis, closure, and verification of Security Technical Implementation Guide (STIG) findings
  • Automate the implementation, testing, and continuous monitoring of STIG findings
  • CI/CD pipelines to automate application build, test and deployment processes
  • Container orchestration and other container tools such as Kubernetes, OpenShift, Docker, Helm charts
  • Automation using Infrastructure of Code (IaC) methodology using tools such as Ansible and/or Terraform
  • DevOps Automation platforms for Continuous Integration and Continuous Deployment (CI/CD) like Gitlab and Jenkins
  • Experience using an Artifactory to manage DevSecOps artifacts and resources
  • Static Application Security Testing (SAST) Tools such as Fortify, SonarQube, and XRAY
  • Dynamic Application Security Testing (DAST) tools like OWASP ZAP
  • Identify and Access Management (IAM) tools like Keycloak
  • Security Compliance Assessment tools like OpenSCAP
• Familiarity with Agile/Scrum development methodologies and experience working within an Agile team.
• Excellent communication and collaboration skills, with the ability to effectively interface with technical and non-technical stakeholders.
• Proof of US citizenship and a DoD Secret clearance is required at time of application

• Fortify
• Openscap

PI278764736