DevSecOps Technical Lead

We are seeking a dynamic and experienced DevSecOps Technical Lead to join this leading Federal Government Agency. This role is pivotal in integrating cybersecurity practices seamlessly into our software development lifecycle. The ideal candidate will possess a strong background in DevOps methodologies coupled with a deep understanding of cybersecurity principles and best practices.

Estimated start date Monday, 01 July 2024
Initial contract duration 12 Months x 12 month extensions
Security Clearance Baseline Clearance
Location of work ACT

Key Responsibilities:

• Design and implement secure DevOps solutions, ensuring that security is integrated into every phase of the software development lifecycle.
• Design and implement Role Based Access Control (RBAC) across DevOps infrastructure to ensure proper authorization and access management.
• Evaluate current and future enterprise architecture to identify security vulnerabilities and propose solutions.
• Design and implement secure build and release (CI/CD) pipelines, leveraging automation to enhance efficiency and security.
• Monitor technological advancements and industry best practices to continuously improve our DevSecOps processes.
• Establish a self-service model and catalogue of available services to empower development teams to implement security measures autonomously.
• Produce comprehensive solution architecture documents to guide development teams in implementing secure solutions.
• Develop integration designs for DevSecOps toolsets to enhance automation and security capabilities.
• Create security models and permissions for developers, facilitating troubleshooting through monitoring and logging practices.
• Implement security controls and models on cloud platforms to ensure compliance with industry standards and best practices.

Skills and Attributes:

• Proficiency in technical writing, with the ability to articulate complex concepts clearly and concisely.
• Extensive experience in PowerShell scripting and other relevant scripting languages.
• Strong understanding of cloud security principles, architecture, and best practices, aligning with industry standards.
• Excellent analytical and problem-solving skills, with a keen eye for detail and a proactive approach to addressing security challenges.
• Ability to quickly learn new ICT systems and technologies, staying abreast of emerging trends and advancements in cybersecurity.
• Adaptable to a dynamic work environment, with the ability to manage multiple priorities effectively.
• Excellent communication and time management skills, capable of collaborating effectively with cross-functional teams.