Engineering · Full-time · United States · Remote possible
Softrams is one of the fastest growing digital services firms in the Washington Metropolitan regions crafting human-centered solutions and empowering digital services with a focus on HX, AI, cloud, DevOps and cyber security. Our offices are located in Leesburg VA, Baltimore MD, and Plano TX, and our teams are spread across the U.S.
Recognized as a Top Workplace USA (2024) Recognized as one of the Top Workplaces in Technology (2023, 2021) INC 5000, Fastest growing companies in America (2023, 2022) Washington Business Journal Top 75 Fastest Growing Companies in Greater Washington area 2020 NXT UP - Top Federal Emerging Technology and consulting firms 2020 Inaugural DC Metro’s Most Successful Companies 2020 Washington Technology Fast 50 NVTC Tech 100 (2020, 2019)
Job Description: Softrams is seeking a seasoned Sr. DevSecOps Engineer to drive critical infrastructure changes through Infrastructure as Code (IaC) while ensuring the security of high-profile applications. The ideal candidate will have extensive experience with provisioning, updating, and removing resources or environments, writing, updating, and running Terraform code, managing database updates, and resizing resources based on load and performance metrics. Responsibilities include configuring roles and policies, managing internal and external cross-account access, maintaining and building networks, and managing DNS or resource property updates. Additionally, the role involves managing certificate requests, automated rotations, and audits. The Sr. DevSecOps Engineer will also monitor application performance, integrate monitoring tools with other services, create or update dashboards, alerts, and policies, and respond to infrastructure-related incidents. Expertise in CI/CD processes and the ability to troubleshoot job issues are essential. This role will be responsible for managing key infrastructure in the healthcare sector.
Federal Requirements:
Qualifications:
Technology Requirements:
Infrastructure and networking (AWS and otherwise):
Provisioning, updating, removing AWS resources or environments
Writing, updating and running Terraform code
RDS database updates (version patches, maintenance)
Sizing up/down existing resources based on load and performance
IAM roles and policies used internally, external cross account role access for data sharing (incoming/outgoing)
Maintenance and building of networks utilizing VPC, Security Groups, Cisco VPN and Peering.
Working with Akamai on DNS or resource property updates
Security Tooling / Skillset:
OWASP ZAP
Burp Suite
Snyk
Penetration Testing
Security Impact Analysis
Certificate Management:
New certificate requests, renewing expiring certificates through automated rotation, and certificate auditing.
Monitoring Application Experience:
Configuring integration between New Relic and other services (AWS, Splunk On-Call, Slack, etc)
Creating or updating dashboards, alerts, synthetics, policies
Troubleshooting problems and responding to incidents when infrastructure is involved
CI/CD:
Creating and updating jobs in CBCore Jenkins
Troubleshooting problems when jobs are not successful
Responsibilities:
Benefits and Perks