DevSecOps Engineer

Company Overview:
GovSpend provides data and analytics to organizations buying and selling in the public sector. With transparency and accountability at the center of what we do, we strive to place critical market intelligence into the hands of our 4,500+ clients so they can win more government business.

Our Mission:
At GovSpend, our vision is to be the foremost and indispensable provider of Data and Market Intelligence on government activity, driving insights for vendors and agencies. We envision a future where organizations harness the power of data to identify opportunities, optimize strategies, and make for more efficient government.

Through our cutting-edge technology and platform, we harvest the data and produce the insights that enable our clients to make data-driven decisions and thrive in the dynamic landscape of government procurement. Together, we shape a more efficient, informed, and impactful public sector ecosystem.

Position Summary:
In this role, you will implement and maintain our GCP infrastructure and deployment pipelines. Your focus will be on improving operational efficiency, automating processes, and ensuring the reliability and scalability of our applications, along with integrating security practices into the DevOps and deployment workflow. You will work closely with software engineers, IT staff, and other stakeholders to deliver high-quality solutions and enhance our security posture across all stages of the software development lifecycle in a fast-paced environment.

What you’ll do:

• Infrastructure Management: Design, deploy, and maintain scalable and reliable infrastructure using cloud platforms (e.g., AWS, Azure, Google Cloud) and infrastructure-as-code tools (e.g., Terraform, CloudFormation).
• CI/CD Pipelines: Develop and manage continuous integration and continuous deployment (CI/CD) pipelines to automate the build, test, and deployment processes.
• Automation: Create and maintain scripts and automation tools to streamline operations and reduce manual intervention, leveraging tools and technologies such as Jenkins, GitLab CI, or Argo CD.
• Monitoring and Performance: Implement monitoring and logging solutions to track system performance, availability, and reliability, and address issues proactively.
• Configuration Management: Use configuration management tools (e.g., Ansible, Puppet, Chef) to manage system configurations and ensure consistency across environments.
• Collaboration: Work closely with development and operations teams to troubleshoot issues, optimize performance, and ensure smooth deployments.
• Security: Implement and enforce security best practices in the deployment pipeline and infrastructure, including automated security testing, vulnerability scanning, and compliance checks.
• Documentation: Maintain comprehensive documentation for systems, processes, and configurations.
• Incident Management: Participate in on-call rotation and respond to production issues, ensuring timely resolution and minimal impact, including root cause analysis and remediation of security breaches.
• Vulnerability Management: Identify, assess, and remediate security vulnerabilities in applications and infrastructure through automated and manual processes.
• Monitoring: Implement and maintain security monitoring solutions to detect and respond to potential security threats in real time.
• Documentation: Create and maintain documentation related to security policies, procedures, and configurations.
• Compliance: Ensure that security practices comply with relevant regulatory requirements and industry standards (e.g., GDPR, HIPAA, SOC 2).
• Training: Provide guidance and training to development and operations teams on secure coding practices and security best practices.
• Other duties as assigned to meet the business needs.

• Bachelor’s degree in MIS, Computer Science or similar is strongly preferred. Proven work experience will be considered in lieu of a degree.
• Proficiency with cloud platforms (e.g., AWS, Azure, Google Cloud) and their services.
• Experience with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI).
• Knowledge of containerization technologies (e.g., Docker, Kubernetes).
• Familiarity with infrastructure-as-code tools (e.g., Terraform, CloudFormation).
• Experience with configuration management tools (e.g., Ansible, Puppet, Chef).
• Strong scripting skills (e.g., Python, Bash, PowerShell).
• Proficiency with security tools and technologies (e.g., static and dynamic analysis tools, vulnerability scanners).
• Proficient with ALL the following technologies/products:
  • ElasticSearch, Logstash, Kibana
  • Analyzer, Profiler, Curator
  • Mapping, Filtering, Aggregations
  • Multi-Cluster Environment
  • Kubernetes, Docker, NGINX
  • Bash, Linux
  • MongoDB, Redis, RabbitMQ
  • NodeJS
• Proven ability to work independently and as part of a team in a fast-paced environment.
• Ability to train other team members.
• Strong problem-solving skills and the ability to think critically under pressure.
• Excellent communication skills with the ability to convey complex security concepts to non-technical stakeholders.
• Is passionate about development and related technologies.
• Has the curiosity to research and learn new technologies and skills.
• Demonstrates determination in tackling complex projects and finding solutions.
• Employs positive thinking and can work constructively in a team setting.