Dice
DevOps Engineer 2
Dice, Austin, Texas, us, 78716
Dice is the leading career destination for tech experts at every stage of their careers. Our client, HTC Global Services, is seeking the following. Apply via Dice today!HTC Global Services wants you. Come build new things with us and advance your career. At HTC Global you'll collaborate with experts. You'll join successful teams contributing to our clients' success. You'll work side by side with our clients and have long-term opportunities to advance your career with the latest emerging technologies.At HTC Global Services our consultants have access to a comprehensive benefits package. Benefits can include Paid-Time-Off, Paid Holidays, 401K matching, Life and Accidental Death Insurance, Short & Long Term Disability Insurance, and a variety of other perks.Job Description:
Perform highly advanced DevSecOps related work as part of a cross-functional team under the direction and guidance of the Shared Application Services manager.Must have strong hands-on professional software development, cybersecurity, and/or IT operations experience building, testing, and deploying secure production applications and systems using continuous integration and continuous delivery/deployment (CI/CD) pipelines in a large-scale enterprise environment.Responsible for integrating security measures into our DevOps processes, automating security controls in CI/CD pipelines, monitoring applications and infrastructure for security vulnerabilities, and conducting regular security assessments.Provide training on secure coding practices and stay updated on new security technologies.Must have expertise in a variety of DevOps tools, knowledge of DevOps automation, and strong experience with Linux administration, containerization technologies, and microservices architecture.Expected to proactively address potential security risks and performance issues to ensure the security, stability, and efficiency of our CI/CD pipelines.Responsibilities:
CI/CD Modernization and automation of the entire pipeline from code check-in to deployment utilizing industry best practices such as Infrastructure as Code (IaC), Configuration as Code (GitOps), and Blue-Green and Canary Deployment Strategies.Implement "Shift Left" security approach by integrating security tools and automating security checks and compliance into the CI/CD pipeline.Monitoring and Observability to provide comprehensive monitoring, logging, and alerting for the CI/CD pipeline.Participating in all phases of SDLC.Performing extensive code reviews and analysis.Writing reports on code analysis to determine if industry standards and secure coding best practices are being followed; provide analysis to address found shortcomings.Providing guidance and knowledge sharing to existing development staff.Must be able to:
Develop and maintain CI/CD pipelines and automate building, testing, and deployment of software applications.Collaborate effectively with software engineers, operations staff, security teams, testers, and various stakeholders to identify and implement "shift left" security measures and best practices in the CI/CD pipelines.Design, test, and implement secure software development practices and standards in the CI/CD pipelines.Automate security controls, data protection, and vulnerability management systems in CI/CD pipelines.Continuously monitor applications and infrastructure for security vulnerabilities and performance issues and coordinate remediation efforts.Develop and/or implement tools to assist in detection, prevention, and analysis of security threats in the CI/CD pipelines.Troubleshoot and resolve issues in the CI/CD pipelines to minimize downtime and limit impact to developers and stakeholders.Participate in incident response and forensic analysis of cybersecurity events.Conduct regular security assessments, audits, and compliance checks to ensure adherence to security standards in DevSecOps practices and CI/CD pipeline.Provide training and awareness to development and operations teams on secure coding practices and threat mitigation.In coordination and alignment with Information Security Office, document and communicate security procedures and policies.Stay abreast of new security technologies, industry standards and best practices, and integrate them into the pipeline architecture and design where applicable.Be productive working independently or in a team environment (both local and remote) with minimal supervision.Must possess:
Knowledge of DevSecOps methodologies, concepts, and practices.Knowledge of DevOps Automation.Comprehensive technical expertise in a variety of DevOps tools, including Ansible, Jenkins, Maven, Artifactory, SonarQube, Xray, Checkmarx, Jira, BitBucket, Subversion, Git/Version Control Software, or comparable technologies.Familiarity with information security frameworks and standards such as NIST and OWASP Top 10.Strong understanding of Linux administration and scripting languages (e.g., PowerShell, Bash, Python).Experience with microservices architecture and cloud-native development.Experience with containerization and orchestration technologies like Docker and Kubernetes.Strong written, verbal, and interpersonal communication skills.Strong problem-solving skills and ability to multi-task with readiness to put in extra effort when necessary.The willingness to learn.Skills and Qualifications (Required):
Professional experience in DevOps engineering, Software Development, or related field - 8 years.Experience with programming languages such as Java and .NET - 7 years.Experience with scripting languages such as Bash, Python, and PowerShell to automate repetitive tasks such as monitoring, deployments, and configuration management - 6 years.Experience in Cybersecurity and implementing and automating security best practices into CI/CD pipelines - 5 years.Experience with security testing tools such as SAST, DAST, or IAST - 5 years.Experience setting up and managing Jenkins servers, creating and maintaining CI/CD pipelines, integrating with other tools (e.g., Git, Maven, SonarQube), writing Groovy scripts for pipeline automation, and monitoring and optimizing Jenkins performance - 5 years.Experience with Infrastructure as Code tools like Ansible, Terraform, or Chef - 5 years.Experience with containerization and orchestration tools such as Docker and Kubernetes - 5 years.Experience with automation of infrastructure provisioning and configuration management - 5 years.Experience with Maven in building and managing Java projects, maintaining POM files, troubleshooting build issues, dependency management and versioning, and integrating with CI/CD pipelines - 5 years.Experience with Artifactory setup, configuration, managing binary repositories, integrating with build tools (e.g., Maven and Jenkins), managing artifact lifecycle and versioning, and implementing security and access controls - 5 years.Experience with microservices architecture, design, development and containerization and orchestration - 5 years.Experience with SQL and NoSQL databases - 5 years.Experience designing, developing, testing, integrating, and implementing secure REST APIs - 5 years.Experience with code reviews and in-depth code analysis - 5 years.Experience with highly complex application security requirements - 5 years.Experience with Git, Bitbucket, Subversion and version control systems - 5 years.Experience with SonarQube setup, configuration, integrating with CI/CD pipelines, and analyzing code quality and security vulnerabilities - 4 years.Experience with Jira and Confluence - 4 years.Experience with Agile teams - 4 years.Experience with coaching, training, mentoring and knowledge transfer - 3 years.Skills and Qualifications (Preferred):
Experience with cloud technologies and platforms such as AWS and Azure - 4 years.Experience working with legacy applications/services - 3 years.Experience in modern web technologies such as JavaScript, Node.js, React.js, Redux, HTML5, CSS3 - 3 years.Proficient with the Microsoft Office products, including Outlook, TEAMS, Microsoft Project, Word, Visio, Excel and PowerPoint - 3 years.Education:
Bachelor's degree or equivalent practical experience.DevOps Engineer 2
#J-18808-Ljbffr
Perform highly advanced DevSecOps related work as part of a cross-functional team under the direction and guidance of the Shared Application Services manager.Must have strong hands-on professional software development, cybersecurity, and/or IT operations experience building, testing, and deploying secure production applications and systems using continuous integration and continuous delivery/deployment (CI/CD) pipelines in a large-scale enterprise environment.Responsible for integrating security measures into our DevOps processes, automating security controls in CI/CD pipelines, monitoring applications and infrastructure for security vulnerabilities, and conducting regular security assessments.Provide training on secure coding practices and stay updated on new security technologies.Must have expertise in a variety of DevOps tools, knowledge of DevOps automation, and strong experience with Linux administration, containerization technologies, and microservices architecture.Expected to proactively address potential security risks and performance issues to ensure the security, stability, and efficiency of our CI/CD pipelines.Responsibilities:
CI/CD Modernization and automation of the entire pipeline from code check-in to deployment utilizing industry best practices such as Infrastructure as Code (IaC), Configuration as Code (GitOps), and Blue-Green and Canary Deployment Strategies.Implement "Shift Left" security approach by integrating security tools and automating security checks and compliance into the CI/CD pipeline.Monitoring and Observability to provide comprehensive monitoring, logging, and alerting for the CI/CD pipeline.Participating in all phases of SDLC.Performing extensive code reviews and analysis.Writing reports on code analysis to determine if industry standards and secure coding best practices are being followed; provide analysis to address found shortcomings.Providing guidance and knowledge sharing to existing development staff.Must be able to:
Develop and maintain CI/CD pipelines and automate building, testing, and deployment of software applications.Collaborate effectively with software engineers, operations staff, security teams, testers, and various stakeholders to identify and implement "shift left" security measures and best practices in the CI/CD pipelines.Design, test, and implement secure software development practices and standards in the CI/CD pipelines.Automate security controls, data protection, and vulnerability management systems in CI/CD pipelines.Continuously monitor applications and infrastructure for security vulnerabilities and performance issues and coordinate remediation efforts.Develop and/or implement tools to assist in detection, prevention, and analysis of security threats in the CI/CD pipelines.Troubleshoot and resolve issues in the CI/CD pipelines to minimize downtime and limit impact to developers and stakeholders.Participate in incident response and forensic analysis of cybersecurity events.Conduct regular security assessments, audits, and compliance checks to ensure adherence to security standards in DevSecOps practices and CI/CD pipeline.Provide training and awareness to development and operations teams on secure coding practices and threat mitigation.In coordination and alignment with Information Security Office, document and communicate security procedures and policies.Stay abreast of new security technologies, industry standards and best practices, and integrate them into the pipeline architecture and design where applicable.Be productive working independently or in a team environment (both local and remote) with minimal supervision.Must possess:
Knowledge of DevSecOps methodologies, concepts, and practices.Knowledge of DevOps Automation.Comprehensive technical expertise in a variety of DevOps tools, including Ansible, Jenkins, Maven, Artifactory, SonarQube, Xray, Checkmarx, Jira, BitBucket, Subversion, Git/Version Control Software, or comparable technologies.Familiarity with information security frameworks and standards such as NIST and OWASP Top 10.Strong understanding of Linux administration and scripting languages (e.g., PowerShell, Bash, Python).Experience with microservices architecture and cloud-native development.Experience with containerization and orchestration technologies like Docker and Kubernetes.Strong written, verbal, and interpersonal communication skills.Strong problem-solving skills and ability to multi-task with readiness to put in extra effort when necessary.The willingness to learn.Skills and Qualifications (Required):
Professional experience in DevOps engineering, Software Development, or related field - 8 years.Experience with programming languages such as Java and .NET - 7 years.Experience with scripting languages such as Bash, Python, and PowerShell to automate repetitive tasks such as monitoring, deployments, and configuration management - 6 years.Experience in Cybersecurity and implementing and automating security best practices into CI/CD pipelines - 5 years.Experience with security testing tools such as SAST, DAST, or IAST - 5 years.Experience setting up and managing Jenkins servers, creating and maintaining CI/CD pipelines, integrating with other tools (e.g., Git, Maven, SonarQube), writing Groovy scripts for pipeline automation, and monitoring and optimizing Jenkins performance - 5 years.Experience with Infrastructure as Code tools like Ansible, Terraform, or Chef - 5 years.Experience with containerization and orchestration tools such as Docker and Kubernetes - 5 years.Experience with automation of infrastructure provisioning and configuration management - 5 years.Experience with Maven in building and managing Java projects, maintaining POM files, troubleshooting build issues, dependency management and versioning, and integrating with CI/CD pipelines - 5 years.Experience with Artifactory setup, configuration, managing binary repositories, integrating with build tools (e.g., Maven and Jenkins), managing artifact lifecycle and versioning, and implementing security and access controls - 5 years.Experience with microservices architecture, design, development and containerization and orchestration - 5 years.Experience with SQL and NoSQL databases - 5 years.Experience designing, developing, testing, integrating, and implementing secure REST APIs - 5 years.Experience with code reviews and in-depth code analysis - 5 years.Experience with highly complex application security requirements - 5 years.Experience with Git, Bitbucket, Subversion and version control systems - 5 years.Experience with SonarQube setup, configuration, integrating with CI/CD pipelines, and analyzing code quality and security vulnerabilities - 4 years.Experience with Jira and Confluence - 4 years.Experience with Agile teams - 4 years.Experience with coaching, training, mentoring and knowledge transfer - 3 years.Skills and Qualifications (Preferred):
Experience with cloud technologies and platforms such as AWS and Azure - 4 years.Experience working with legacy applications/services - 3 years.Experience in modern web technologies such as JavaScript, Node.js, React.js, Redux, HTML5, CSS3 - 3 years.Proficient with the Microsoft Office products, including Outlook, TEAMS, Microsoft Project, Word, Visio, Excel and PowerPoint - 3 years.Education:
Bachelor's degree or equivalent practical experience.DevOps Engineer 2
#J-18808-Ljbffr