DevSecOps SME II, Cloud Computing Technologies Agile Development Labor Rate infuses security at each stage of software development lifecycle. Choose and deploy the appropriate automated application security testing tools and provide users with the best ways to utilize their security features. Create Continuous Integration, Continuous Delivery, or Continuous Testing (CI,CD,CT) pipelines to ensure automation of incident analysis and response. Locate security design gaps in existing architecture and offer improvements, sustainability, and support as required. Capable of scripting code using some or all of the following: Java, Go, HTML, Python, XHTML, Perl, CGI, Ruby, SQL, PHP, NET, and so on. Capable of developing, testing, and maintaining containerized applications. May have 6-10 years of experience in this field. Proficient in developing and using the following technologies: Endpoint security products, Malware Sandbox, IDS/IPS, Perimeter Email and Network security products, Crowdstrike, Wireshark, Remedy, Tanium, and so on. Possess a degree in one or more of the following; Cybersecurity, Computer Science, Computer engineering, etc.; and/or an industry standard certification such as Certified Ethical Hacker (CEH), Certified Secure Software Lifecycle Professional, GIAC, Cisco, Microsoft, AWS, etc. Familiar with popular CI/CD tools such as Jenkins, GitLab, MST suite, Chef, Azure, Puppet, CircleCI, etc. Should be up-to-date with Docker, Kubernetes as well as cloud hosting providers such as AWS, Microsoft, etc. Have deep understanding of Windows, Linux, and Unix operating systems. Capable of authoring Standard Operating Procedures (SOPs) and update system documentation as needed. Have an excellent understanding of Static and Dynamic Malware analysis technologies and methods. Possess excellent communication skills and capable of communicating remediation procedures during cyber security events. Possess strong experience managing cases using enterprise SIEM systems such as Sentinel. Works under the direction, supervision and guidance of the Senior DevSecOps SME.
Further rates within this DevSecOps SME II category.