Application Security Engineer

Job Description

Description

SAIC is currently seeking to hire an Application Security Engineer to join the team in Colorado Springs, Colorado.

Note: candidates must reside or be willing to relocate to Colorado Springs and work onsite.

Job Responsibilities:

• Responsible for defining and implementing the build, deployment and monitoring standards
• Build and configure delivery environments supporting CI/CD tools using an Agile delivery methodology
• Working closely with our development team and create an automated continuous integration (CI) and continuous delivery (CD) system
• Ensures CI/CD and DevSecOps capabilities/process aligns with the DoD’s establish security architecture that includes, but not limited to, automation, where best suited and ensure processes, and environment separation (dev, test, prod), and separation of user and privilege user roles
• Builds CI/CD based version control, automated builds, and release management that align with DoD
• Documents the programs enterprise CI/CD and DevSecOps strategy, high level data flow, establishes an end-to-end data management/technical architecture, integrated with the right tools (Jira, Jenkins, Gitlab, Docker, Kubernetes etc.) and provides corresponding roadmaps
• Facilitates solutions to integrate a more automated code analysis validation process, where possible
• Leads and manages CI/CD and DevSecOps implementation across matrixed team, tracking and managing solutions, status updates, schedules and risks; daily collaboration efforts are expected

Qualifications

Required Education:

Bachelors degree with two (2) years of experience; four (4) years of experience accepted in lieu of degree.

Required Clearance:

Must hold a current and active Secret security clearance with the ability to obtain Top Secret/SCI clearance; US Citizenship required.

Required Certifications:

• Must hold current Security+ CE or other DoD 8570 IAT II approved certification

Required Skills:

• A minimum of 2 years of DevSecOps experience
• Experience in defining an enterprise data platform strategy and establishing an end-to-end CI/CD program
• Experience setting up and maintaining the full DevSecOps practice and possesses
• Experience with CI/CD pipeline automation tools, cloud environments and associated cloud deployments and network stack/protocols; knowledgeable in building and working with Docker containers
• Ability to work in agile environment and collaborate with other teams/groups in a fast paced agile environment
• Experience with fully automating CI/CD pipelines end-to-end, from code commits to production
• Solid experience in installing, configuring and troubleshooting UNIX/Linux based environments
• Experience with secure coding principles; code signing and secure boot
• Proven experience in security code review and code analysis

Overview

SAIC® is a premier Fortune 500® technology integrator driving our nation's technology transformation. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes secure high-end solutions in engineering, digital, artificial intelligence, and mission solutions. Using our expertise and understanding of existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions that are critical to achieving our customers' missions.

We are approximately 26,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer, fostering a culture of diversity, equity, and inclusion, which is core to our values and important to attract and retain exceptional talent. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.4 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom.