Sr. DevSecOps Engineer - Hybrid (Washington D.C./Baltimore area)

As a Senior DevSecOps Engineer at Yurts, your primary responsibilities will include deploying our product in government compute environments, maintaining a robust security posture, and collaborating with product engineering teams. You'll also architect deployment tools, develop automation scripts, and ensure high availability and disaster recovery capabilities for deployed applications.

To apply for the Senior DevSecOps Engineer position at Yurts, candidates must have an active US Department of Defense or Intelligence SECRET clearance, a BS degree in Computer Science or a related field, and at least 4 years of experience in a DevOps or DevSecOps role. Familiarity with Kubernetes, Ansible, Terraform, and various cloud environments is essential.

Yurts prioritizes security through rigorous compliance with US Federal Government Risk Management Frameworks. As a Senior DevSecOps Engineer, you'll be responsible for preparing necessary security packages for Authorization to Operate, implementing security best practices, and enhancing our security posture while deploying our software.

A Senior DevSecOps Engineer at Yurts should be proficient in Kubernetes, containerization technologies like Docker, automation tools such as Ansible and Terraform, and CI/CD tools like GitLab and Jenkins. Experience with scripting languages, cloud platforms like AWS and Azure, and knowledge of both SQL and NoSQL databases is also critical.

At Yurts, a Senior DevSecOps Engineer will be provided with numerous opportunities for professional growth, including engaging in innovative projects, advancing technical skills, participating in strategic IT roadmap discussions, and collaborating with cross-functional teams to shape the future of AI technology.

In answering this question, focus on specific projects where you implemented automation with these tools. Highlight the challenges faced, how you addressed them, and the benefits realized, such as improved efficiency and reduced errors in deployments.

Discuss specific strategies you've employed, such as using Kubernetes for orchestration, implementing load balancing, and setting up automated backup processes. It's also good to mention incidents where these strategies helped to prevent downtime.

Explain your systematic approach to troubleshooting, such as identifying the issue, isolating the system components, and using logs and alerts to pinpoint the root cause. Provide examples of previous troubleshooting experiences and outcomes.

Discuss how you integrate security practices into DevOps processes. Share specific methodologies you’ve used, how you’ve collaborated with other teams to ensure compliance, and your familiarity with governmental security regulations.

Elaborate on practices you follow to maintain compliance, such as regular audits, security training, or implementing monitoring tools. Also, share an example of how you’ve successfully addressed compliance challenges.

Share how effective communication facilitates collaboration, helps align priorities across teams, and ensures that all relevant stakeholders are informed about deployments and security issues. Use examples of successful cross-team interactions.

Provide specific details about a project where you used infrastructure as code, discussing the tools employed (like Terraform), the outcomes of implementing this approach, and how it improved scalability and management of resources.

Talk about the specific CI/CD tools you've had experience with, such as Jenkins or GitHub Actions, and highlight how these tools have streamlined your deployment processes, allowed for faster iterations, and reduced the risk of errors.

Explain your methods for staying informed, such as attending conferences, participating in online communities, or engaging in continuous learning. Mention specific technologies or trends you're particularly excited about.

Discuss potential obstacles such as resistance to change, legacy systems, or communication barriers. Provide insight into how you've navigated similar situations in the past and strategies for overcoming these challenges.