Principal Devsecops Engineer / Sr. Principal Devsecops Engineer

Northrop Grumman Melbourne , FL 32901

Posted 3 months ago

US CITIZENSHIP REQUIRED FOR THIS POSITION: Yes

RELOCATION ASSISTANCE: Relocation assistance may be available

CLEARANCE TYPE: Secret

TRAVEL: Yes, 10% of the Time

Description

Join Northrop Grumman on our continued mission to push the boundaries of possible across land, sea, air, space, and cyberspace. Enjoy a culture where your voice is valued and start contributing to our team of passionate professionals providing real-life solutions to our world's biggest challenges. We take pride in creating purposeful work and allowing our employees to grow and achieve their goals every day by Defining Possible. With our competitive pay and comprehensive benefits, we have the right opportunities to fit your life and launch your career today.

Northrop Grumman Aeronautics Systems has an opening for a Principal or Sr. Principal DevSecOps Engineer to join our team of qualified, diverse individuals within our System Integration Test and Evaluation (SIT&E) organization. This role is located in Melbourne, Florida.

In this role you will be working in a fast-paced work environment with high expectations, significantly diverse assignments, collaborative/team settings across all levels.

The DevOps Engineer role in the team is key to the continued operation of building and validating the release products within the Continuous Integration/Continuous Delivery (CI/CD) pipeline - being able to support both the software and test engineers across multiple projects to implement and validate changes through the product lifecycle and deliver a product in readiness for formal delivery to the customer.

Key Responsibilities:

  • Responsible for the design and implementation of the CI/CD pipelines to deliver release products

  • System administration tasks, such as provisioning and managing servers and Virtual Machines (VMs)

  • Manage the security monitoring, system patching, and internal network connectivity

  • Coordinate with Infrastructure team to deploy and provide availability of VMs within the product development environment

  • Coordinate with the software engineers to automate the building of product artefacts across the development branches

  • Coordinate with the test engineers to deploy automated test execution against the test execution plan

  • Manage the virtual deployment of Windows platforms using Terraform templates

  • Maintain and develop relevant templates to deploy required Windows Operating System version and build updates

  • Maintain and manage the Jenkins jobs within the CI/CD pipeline

  • Address and investigate issues encountered within the workings of the CI/CD pipeline

  • Management and resolution of Common Vulnerabilities and Exposures (CVEs) raised across dependent development components

We offer flexible work arrangements, 9/80 work schedule with every other Friday off, phenomenal learning opportunities, exposure to a wide variety of projects and customers, and a very friendly team environment. We are looking for self-motivated, proactive, and goal-oriented people to help us grow our services and become even better at what we do.

Basic Qualifications (Principal Engineer):

  • Bachelor's Degree in Science AND 5 years of work related experience in Computer Systems / Cyber Engineering OR Master's Degree AND 3 years of experience OR PhD AND 0 years of experience

  • Candidate must have an active DoD Secret or Top Secret and a background investigation within the scope of 6 years

  • Must have the ability to obtain and maintain Special Access Program (SAP) clearance prior to the commencement of employment

  • Candidate must be able to obtain all required enhanced security clearances and program specific accesses

Basic Qualifications (Senior Principal Engineer):

  • Bachelor's Degree in Science AND 9 years of work related experience in Computer Systems / Cyber Engineering OR Master's Degree AND 7 years of experience OR PhD AND 4 years of experience

  • Candidate must have an active DoD Secret or Top Secret and a background investigation within the scope of 6 years

  • Must have the ability to obtain and maintain Special Access Program (SAP) clearance prior to the commencement of employment

  • Candidate must be able to obtain all required enhanced security clearances and program specific accesses

Preferred Qualifications:

  • Security+ or CISSP Certification

  • VMWare Certification or Experience

  • Excellent communication, interpersonal skills, and the ability to interface with all levels of employees and management"

  • Continuous Integration / Continuous Development pipeline experience

  • Building applications using Jenkins or Jenkins like tools

  • Manage containers using container orchestrator Docker

  • Build custom scripts to automate tasks using Ansible, Node.js or Java

  • Source code management using Git/Bitbucket

  • Administration experience of Linux and Windows Operating Systems

  • Experience of automating tasks using Ansible and/or Terraform

  • Experience of administering Virtualised or Containerised systems in VMWare and Docker

  • Working practices, such as Git Branching and release schedules

  • Experience of secure virtualization and containerization system design

  • Experience of designing, deploying and troubleshooting networking, including subnetting, VLANs and VPNs

  • Experience of designing, deploying and administering cloud based solutions such as Amazon Web Service (AWS)

  • Experience of secure network architecture design

Salary Range: $87,600.00 - $131,400.00Salary Range 2: $108,600.00 - $163,000.00

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 https://www.saferfederalworkforce.gov/contractors/.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Security Devsecops Engineer

Paypal

Posted 1 week ago

VIEW JOBS 9/24/2022 12:00:00 AM 2022-12-23T00:00 <p>At PayPal (NASDAQ: PYPL), we believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.</p><p>When applying for a job you are required to create an account, if you have already created an account - click Sign In.</p><p>Creating an account will allow you to follow the progress of your applications. Our system does have some requirements that will help us process your application, below are some guidelines for creation of your account:</p><ul><li><p>Provide full legal First Name/Family Name - this is important for us to ensure our future hires have the right system set up.</p></li><li><p>Please Capitalize first letter of your First and Last Name.</p></li><li><p>Please avoid using fully capitalized text for your First and/or Last Name.</p></li><li><p>NOTE: If your name is hyphenated or has multiple capitalization, please use the same format as your government ID.</p></li></ul><p>Job Description Summary:</p><p>What you need to know about the role:</p><p>As a senior information security DevSecOps engineer on the PayPal Enterprise Cyber Security (ECS) team, you will be a key member of a technical and hands on security team tasked with implementing and integrating the security tools and platforms with recently acquired business units. These efforts currently support the Happy Returns and ChargeHound business units, their product offerings, and the cloud infrastructure/services used. This security engineering team is responsible for designing, deploying, implementing, automating, and operationalizing security infrastructure, platforms, and toolsets with our business units and their engineering and software development efforts to meet PayPal security outcomes and business goals. In this role you will report directly to the Head of Information Security for Happy Returns and ChargeHound and work not only with your teammates, but also cross-functionally with various teams within Happy Returns, ChargeHound, and PayPal on all things related to information security, cybersecurity, and information assurance/compliance. Due to breadth of partners, you will work with, inclusivity of ideas, perspectives, and our diversity are important values that we champion.</p><p>Job Description:</p><p>Meet our team:</p><p>This role is with a relatively new, greenfield team composed of diverse individuals early in their career as well as seasoned veterans who have spent time fighting nation state actors (APTs), presented at DEFCON and other security conferences, conducted penetration tests on F100 companies, to helping companies restore and recover from data breaches. We are driven to learn, help each other grow personally &amp; professionally, be inclusive, and help our business units, peers, and customers identify and manage their risks. We look forward to having you join us to round out the capabilities of our team, learn from you, and help you do the same.</p><p>This is a remote role in North America, working with remote team members in North America and peers around the world. When safe to do so and as business obligations require, some travel would be expected for real world incidents, site visits, practice exercises, meetings, conferences, and the like.</p><p>Your way to impact</p><p>You will actively take part in and lead the hands-on efforts to help protect and defend our network boundaries, keep computer, network, and cloud systems hardened against malicious activity, and provide security services that protect extremely sensitive customer information. Our Security Engineers work hands-on with all layers and pieces of the technology stack, actively monitor our systems for attacks and intrusions in both on-prem and cloud environments. You will use your experience to own, facilitate, and drive the resolution of complex security incidents, the implementation of security toolsets, the automation and operationalization of these toolsets to maximize our risk management capabilities as well as our return of investment (ROI), address policy questions, and resolve security issues of a technical nature. Additionally, you will also work with our software engineers to proactively identify and fix security flaws and vulnerabilities in our product and platform. Our security engineers work on a broad set of efforts focusing on scaling and automating security infrastructure and processes. We solve user and corporate security concerns, investigate security incidents, perform security gap analysis, build and integrate systems, conduct applied research, and implement novel technologies and architecture to deal with enterprise security across a diversity of computing platforms such as mobile and cloud. Our focus is to assess the newly acquired business unit's security posture and toolsets, map out the needed capabilities while aligning with PayPal' standards and compliance obligations, and work with the various stakeholders to implement, operationalize, and optimize.</p><p>What do you need to bring:</p><p>You should have at least 5 years of relevant industry experience in information security/cybersecurity. During that time, you should have hands on, in-depth experience, with a thorough understanding of the following:</p><ul><li><p>Using, managing, and securing popular cloud services and platforms that are SaaS, IaaS, etc.</p></li><li><p>Security concepts in Heroku and AWS and with the available security tools, such as Inspector, GuardDuty, Macie, Config, CloudFormation, CloudWatch, CloudTrail, Trusted Advisor, WAF etc., while also being familiar with third party alternatives (and when it is beneficial to use them).</p></li><li><p>How to administer and effectively manage monitoring and detection systems that are UNIX, Linux, and/or BSD based that are based in AWS or GCP.</p></li><li><p>Computer networking, routing, and protocols</p></li><li><p>Deploying Identity and access management services including Single Sign On (SSO) frameworks and mechanisms such as OAuth, SCIM, and SAML.</p></li><li><p>How legitimate users administer, use, and secure common consumer and enterprise network devices and systems, and how malicious actors exploit them.</p></li><li><p>Log management and security analytics tools, including open source and commercial platforms/toolsets.</p></li><li><p>Implementing, Integrating, and tuning network and cloud security infrastructure, applications (web and mobile), as well as security tools and platforms, and the automation to operationalize them</p></li><li><p>Integrating security in the continuous integration, continuous delivery, and continuous deployment (CI/CD) pipeline for Networking as Code (NaC) and Infrastructure as Code (IaC) (running unit tests, running security tools, managing secrets using tools such as Vault) using configuration management and automation tools such as Jenkins, Chef, Ansible, Puppet, Terraform, etc.</p></li><li><p>Experienced with using Regular Expressions (REGEX) as well as with automation and development leveraging Python, Networking as Code (NaC) such as Terraform, Infrastructure as Code (IaC), and Golang.</p></li><li><p>The ability to monitor, evaluate, and interpret vulnerabilities/CVEs, vulnerability, risk, and security assessments, cloud platform/system/device/IDS/IPS logs, and threat analysis.</p></li><li><p>Proven methods for analyzing and interpreting information from Security Operations Centers (SOCs), Computer Security Incident Response Teams (CSIRTs), or SecOps systems</p></li><li><p>Knowledgeable about and able to apply open-source and proprietary information within the industry.</p></li><li><p>Excellent oral and written communications skills for working with a diverse professional clientele with varying levels of technical experience. Ability to interact with internal and external customers, leadership, and co-workers both in person, virtually, and in writing.</p></li><li><p>Ability to research highly technical topics and derive logical conclusions using well thought out processes, eliminating bias and logical fallacies.</p></li><li><p>Ability to combine information from various sources into clear, concise technical documents that explain the background and procedures for detecting and mitigating risk.</p></li><li><p>Working with and in O365, or the ability &amp; willingness to learn the platform and applications.</p></li><li><p>During your career you should have been exposed to and have an understanding of:</p></li></ul><ul><li>Security monitoring and intrusion detection,</li><li>Managing the information security incident lifecycle, including incident response, mitigation, forensics, after-action reporting, and mapping a path forward.+ Secure network design+ Information security architecture, mitigation of threats, and compensating controls.+ Applied cryptography and security protocols</li><li>Penetration testing and red teaming</li><li>Enterprise risk management programs, including internal audits, consulting engagements, information technology reviews, audit, and compliance efforts.+ Implementing and working with industry standards and guidelines relevant to the role and our industry, such as ISO, ITIL, NIST, SANS, CIS, ACIPA SOC1/SOC2/SOC3, and PCI.</li></ul><ul><li><p>Have a willingness and desire to learn.</p></li><li><p>Possess and nurture a hacker mentality: Being able to visualize issues and possible solutions outside the box.</p></li><li><p>Must be a conscientious, punctual, professional, and devoted member of our team having the highest level of ethics and core values; with the ability to safeguard sensitive, restricted, and other information deemed to have special handling and dissemination protocols.</p></li><li><p>Strong bias for action and ownership.</p></li><li><p>Have proven abilities to work cross functionally and delivery results, with the perspective that no project is too big or too small.</p></li><li><p>Effective when working under pressure and good enough to make sure that rarely happens.</p></li><li><p>Bachelor's degree, a combination of experience and/or Associates degree, or an equivalent combination of education, training, and work or volunteer experience. Note that all degrees must be from an accredited institution and in a technical discipline or significant coursework in software development, information security, risk management, or information technology is preferred.</p></li><li><p>Having (or planning to have) information security and technology related certifications are a plus. Examples of such certifications would include:</p></li></ul><ul><li>Any of the AWS certifications</li><li>Certificate of Cloud Security Knowledge (CCSK) from the Cloud Security Alliance (CSA).+ PDSO DevSecOps Professional (CDP)+ PDSO DevSecOps Expert (CDE)+ PDSO DevSecOps Leader (CDL)+ PDSO Container Security Expert (CCSE)+ PDSO Threat Modelling Professional (CTMP)+ PDSO Cloud Native Security Expert (CCNSE)</li><li>SANS GIAC Information Security Professional (GISP),</li><li>SANS GIAC Certified Web Application Defender (GWEB),</li><li>SANS GIAC Python Coder (GPYC),</li><li>SANS GIAC Public Cloud Security (GPCS),</li><li>SANS GIAC Continuous Monitoring Certification (GMON),</li><li>SANS GIAC Defensible Security Architecture (GDSA),</li><li>SANS GIAC Defending Advanced Threats (GDAT),</li><li>SANS GIAC Enterprise Vulnerability Assessor (GEVA),</li><li>SANS GIAC Cloud Security Automation (GCSA),</li><li>SANS GIAC Cloud Security Essentials (GCLD),</li><li>SANS GIAC Critical Controls Certification (GCCC).</li></ul><p>Note that the ability to articulate and demonstrate skills are as or more important than the certifications or the education.</p><p>We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Note that if you do not meet 100% of the qualifications listed, you should ignore that imposter syndrome and still seriously consider applying for the role. Studies show that you can still be considered for a role if you meet just 50% of the role's listed requirements, with an even higher percentage if you include a cover letter. Please don't hesitate to apply.</p><p>Subsidiary:</p><p>PayPal</p><p>Travel Percent:</p><p>0</p><p>Colorado Only : The pay range for this position is as mentioned below per year, plus annual bonus. We take into consideration an individual's background and experience in determining final salary. All PayPal employees are shareholders in our Company, so equity is part of our total compensation plan. This role is also eligible for health insurance, stock purchase plans, retirement savings benefits, stock awards, life insurance and disability benefits, and paid time off for sick leave, parental leave, vacation and PTO. To learn more visit paypalbenefits.com. This information is provided per the Colorado Equal Pay Act. Base pay information is based on market location.</p><p>Colorado Salary in USD : $134385 - $166005</p><p>Our Benefits:</p><p>At PayPal, we're committed to building an equitable and inclusive global economy. And we can't do this without our most important asset-you. That's why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.</p><p>We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit https://www.paypalbenefits.com</p><p>Who We Are:</p><p>Click Here to learn more about our culture and community.</p><p>PayPal has remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the PayPal platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit paypal.com.</p><p>PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at paypalglobaltalentacquisition@paypal.com.</p><p>As part of PayPal's commitment to employees' health and safety, we have established in-office Covid-19 protocols and requirements, based on expert guidance. Depending on location, this might include a Covid-19 vaccination requirement for any employee whose role requires them to work onsite. Employees may request reasonable accommodation based on a medical condition or religious belief that prevents them from being vaccinated.</p><br> Paypal Melbourne FL

Principal Devsecops Engineer / Sr. Principal Devsecops Engineer

Northrop Grumman