Job Description
Job Description
Title: Service Mesh Engineer
Location: Alexandria, VA
Clearance: TS/SCI with the ability to obtain and maintain a CI polygraph
Job Details:
- Support efforts to minimize security risk by managing, monitoring, testing, and reporting on applications and APIs and to advise the internal technical community as Subject Matter Expert
- Work with Agile and Development/Operations/ DevSecOps teams, reviewing system and application design and architecture documentation, researching and referencing information security policy, and delivering recommendations and guidance in securing systems, processes, and software applications
- Plan, research, design and model robust API Frameworks ensuring security posture using API technologies in cloud-native container platforms hosted on traditional data centers and on cloud providers such as Amazon Web Services (AWS), Microsoft Azure, etc.
- PArticipate in creating and maintaining API security specifications, administering API security testing tools, performing API code reviews, attesting compliance with the security requirements, and advising development teams on API-related technical issues and questions
- Conduct in-depth security engineering reviews and approve proposed systems/application security control implementations for systems hosted in cloud/container-based providers such as AWS, Azure, OpenShift, and Kubernetes
- Conduct applied security research on security standards, authentication tools, and protocols supporting cloud/container-based systems
- Support government mission efforts to minimize security risks introduced by managing, monitoring, testing, and identifying security risks and areas of exposure in systems and applications developed by mission system owners
- Identify COTS/GOTS systems integration issues and security control implementation deficiencies and recommend enhancements to bolster security posture
- Conduct container platform vulnerability testing and risk and security assessments using a penetration tester mindset
- Oversee container-based technology and security awareness programs as well as educational efforts
- Provide technical supervision and guidance to a software and security engineering team
Requirements:
- Bachelor's degree from an accredited institute in an area applicable to the position; an additional 4 years of may be substituted in lieu of a degree
- Minimum of eight (8) years of directly related experience in addition to education level
- Knowledge of systems delivery using container-based technologies and service mesh
- Experience with CI/CD using container-based technologies
- Distributed computing with emphasis on container-based networking, routing and troubleshooting
- Consulting and professional services using Agile and DevOps methodologies
- Security Research and Development (R&D)
- Infrastructure Automation tooling to build and delivering secure systems delivery chain
- Cloud and container security penetration and vulnerability testing
- Networking, firewall, and intrusion detection/prevention protocols
- Computer Network Defense, ethical hacking, and threat modeling
- Identity and access management principles using PKI and PKI/E
- Application security and encryption technologies
- Enterprise system and security engineering and architecture
- Implementing Risk Management Framework (RMF) in high-risk network environment
- Practices and methods of IT strategy, enterprise architecture and security architecture
- Must possess current DoD 8570 IAT/IAM III certification; additional certifications such as CSSLP, CCSP, CPSSE, GXPN, GWAPTor similar are a plus
- Current active TS/SCI clearance, with the ability to obtain and maintain a CI polygraph
Equal Opportunity Employer/Veteran/Disabled
Job Posted by ApplicantPro
About Invictus International Consulting, LLC
Go to job list