| CPA (304139595) DevSecOps Engineer 3 at Remote, Remote, USA |
| Email: [email protected] |
| Role: CPA - DevSecOps Engineer 3 Number of Resumes allowed per Vendor: 2 Location: Austin - Hybrid - On Site and Remote Local to TX candidates only Rate: 90/hr on c2c. All travel, per diem, parking, and/or living expenses shall be at the workers and/or Vendors expense. I. DESCRIPTION OF SERVICES Note: The Sr Resource will perform highly advanced DevSecOps related work as part of a cross-functional team under the direction and guidance of the Shared Application Services manager. The Worker must have strong hands-on professional software development, cybersecurity, and/or IT operations experience building, testing, and deploying secure production applications and systems using continuous integration and continuous delivery/deployment (CI/CD) pipelines in a large-scale enterprise environment. The worker will be responsible for integrating security measures into our DevOps processes, automating security controls in CI/CD pipelines, monitoring applications and infrastructure for security vulnerabilities, and conducting regular security assessments. Implement "Shift Left" security approach by integrating security tools and automating security checks and compliance into the CI/CD pipeline. Texas Comptroller of Public Accounts requires the services of 2 DevOps Engineer 3, hereafter referred to as Candidate(s), who meets the general qualifications of DevOps Engineer 3, Applications/Software Development and the specifications outlined in this document for the Texas Comptroller of Public Accounts. All work products resulting from the project shall be considered "works made for hire" and are the property of the Texas Comptroller of Public Accounts and may include pre-selection requirements that potential Vendors (and their Candidates) submit to and satisfy criminal background checks as authorized by Texas law. Texas Comptroller of Public Accounts will pay no fees for interviews or discussions, which occur during the process of selecting a Candidate(s). The Worker will perform highly advanced DevSecOps related work as part of a cross-functional team under the direction and guidance of the Shared Application Services manager. The Worker must have strong hands-on professional software development, cybersecurity, and/or IT operations experience building, testing, and deploying secure production applications and systems using continuous integration and continuous delivery/deployment (CI/CD) pipelines in a large-scale enterprise environment. The worker will be responsible for integrating security measures into our DevOps processes, automating security controls in CI/CD pipelines, monitoring applications and infrastructure for security vulnerabilities, and conducting regular security assessments. The worker will also provide training on secure coding practices and stay updated on new security technologies. They should have expertise in a variety of DevOps tools, knowledge of DevOps automation, and strong experience with Linux administration, containerization technologies, and microservices architecture. The worker is expected to proactively address potential security risks and performance issues to ensure the security, stability, and efficiency of our CI/CD pipelines. CPA will require the Worker to work on the following initiatives and will perform advanced tasks such as: CI/CD Modernization and automation of the entire pipeline from code check-in to deployment utilizing industry best practices such as Infrastructure as Code (IaC), Configuration as Code (GitOps), and Blue-Green and Canary Deployment Strategies. Implement "Shift Left" security approach by integrating security tools and automating security checks and compliance into the CI/CD pipeline. Monitoring and Observability to provide comprehensive monitoring, logging, and alerting for the CI/CD pipeline. Participating in all phases of SDLC. Performing extensive code reviews and analysis. Writing reports on code analysis to determine if industry standards and secure coding best practices are being followed; provide analysis to address found short comings. Providing guidance and knowledge sharing to existing development staff. II. CANDIDATE SKILLS AND QUALIFICATIONS Minimum Requirements: Candidates that do not meet or exceed the minimum stated requirements (skills/experience) will be displayed to customers but may not be chosen for this opportunity. Years Required/Preferred Experience 8 Required Professional experience in DevOps engineering, Software Development, or related field 7 Required Experience with programming languages such as Java and .NET 6 Required Experience with scripting languages such as Bash, Python, and PowerShell to automate repetitive tasks such as monitoring, deployments, and configuration management 5 Required Experience in Cybersecurity and implementing and automating security best practices into CI/CD pipelines 5 Required Experience with security testing tools such as SAST, DAST, or IAST 5 Required Experience setting up and managing Jenkins servers, creating and maintaining CI/CD pipelines, integrating with other tools (e.g., Git, Maven, SonarQube), writing Groovy scripts for pipeline automation, and monitoring and optimizing Jenkins performance. 5 Required Experience with Infrastructure as Code tools like Ansible, Terraform, or Chef 5 Required Experience with containerization and orchestration tools such as Docker and Kubernetes 5 Required Experience with automation of infrastructure provisioning and configuration management 5 Required Experience with Maven in building and managing Java projects, maintaining POM files, troubleshooting build issues, dependency management and versioning, and integrating with CI/CD pipelines 5 Required Experience with Artifactory set up, configuration, managing binary repositories, integrating with build tools (e.g., Maven and Jenkins), managing artifact lifecycle and versioning, and implementing security and access controls. 5 Required Experience with microservices architecture, design, development and containerization and orchestration 5 Required Experience with SQL and NoSQL databases 5 Required Experience designing, developing, testing, integrating, and implementing secure REST APIs 5 Required Experience with code reviews and in-depth code analysis 5 Required Experience with highly complex application security requirements 5 Required Experience with Git, Bitbucket, Subversion and version control systems 4 Required Experience with SonarQube set up, configuration, integrating with CI/CD pipelines, and analyzing code quality and security vulnerabilities 4 Required Experience with Jira and Confluence 4 Required Experience with Agile teams 3 Required Experience with coaching, training, mentoring and knowledge transfer 4 Preferred Experience with cloud technologies and platforms such as AWS and Azure 3 Preferred Experience working with legacy applications/services 3 Preferred Experience in modern web technologies such as JavaScript, Node.js, React.js, Redux, HTML5, CSS3 3 Preferred Public sector experience (Federal, State or Local Government) 2 Preferred Proficient with the Microsoft Office products, including Outlook, TEAMS, Microsoft Project, Word, Visio, Excel and PowerPoint III. TERMS OF SERVICE Services are expected to start 09/09/2024 and are expected to complete by 08/31/2025. Total estimated hours per Candidate shall not exceed 1920 hours. This service may be amended, renewed, and/or extended providing both parties agree to do so in writing. IV. WORK HOURS AND LOCATION Services shall be provided during normal business hours unless otherwise coordinated through the Texas Comptroller of Public Accounts. Normal business hours are Monday through Friday from 8:00 AM to 5:00 PM, excluding State holidays when the agency is closed. The primary work location(s) will be at 111 E 17th Street Austin, Texas 78711. The working position is Hybrid - On Site and Telework. Any and all travel, per diem, parking, and/or living expenses shall be at the Candidate's and/or Vendor's expense. Texas Comptroller of Public Accounts will provide pre-approved, written authorization for travel for any services to be performed away from the primary work location(s). Pre-approved travel expenses are limited to the rates and comply with the rules prescribed by the State of Texas for travel by its classified employees, including any requirement for original receipts. The Candidate(s) may be required to work outside the normal business hours on weekends, evenings and holidays, as requested. Payment for work over 40 hours will be at the hourly rate quoted and must be coordinated and pre-approved through Texas Comptroller of Public Accounts. Thanks and Best Regards , Devi Skanda Everest Consulting Group Inc. 3840 Park Ave, Edison, NJ 08820 Direct: 732 609 8600 EXT 8600 Desk : 732-548 2700 Ext: 8600 [email protected] linkedin.com/in/devi-skanda-89165322b Keywords: continuous integration continuous deployment javascript access management information technology California New Jersey Texas CPA (304139595) DevSecOps Engineer 3 [email protected] |
| [email protected] View all |
| Tue Jul 16 22:27:00 UTC 2024 |