Senior Multi-Cloud DevSecOps Engineer (Hybrid Position)

MicroHealth is seeking an experienced Senior Multi-Cloud DevSecOps Engineer to join our innovative team. The ideal candidate will have extensive knowledge across major cloud platforms and a strong background in infrastructure automation, security integration, and cross-functional team leadership.

**This hybrid position is based at our headquarters in Vienna, VA, with a requirement to be on-site at least three days per week.

Essential Functions:

• Leadership and Collaboration:
  • Lead cross-functional teams, fostering collaboration between development, operations, and security.
  • Mentor team members on DevSecOps best practices and emerging cloud technologies.
  • Facilitate knowledge sharing sessions on multi-cloud strategies and security practices.
• Multi-Cloud Management and Automation:
  • Manage and optimize accounts across multiple cloud platforms (e.g., AWS, Azure, GCP, OCI).
    • AWS: Implement AWS Organizations for multi-account management and Security Hub for centralized security monitoring.
    • Azure: Utilize Azure Policy and Management Groups for governance across multiple subscriptions.
    • GCP: Implement resource hierarchy and organization policies for centralized control.
  • Automate critical processes using cloud-native tools and third-party solutions.
  • Design and implement cross-cloud architectures, ensuring interoperability and optimal resource utilization.
• Infrastructure and System Administration:
  • Demonstrate expertise in both Linux (e.g., Ubuntu, CentOS, Amazon Linux) and Windows server administration.
  • Manage and automate virtual machines using various hypervisors (e.g., VMware vSphere, Microsoft Hyper-V, KVM, Proxmox).
  • Configure and secure networks across on-premises and multi-cloud environments.
    • Implement consistent network security groups and firewall rules across AWS VPCs and Azure VNets.
    • Set up and manage VPN connections between on-premises data centers and multiple cloud providers.
• Infrastructure as Code (IaC) and Configuration Management:
  • Utilize multiple IaC tools for different cloud platforms and use cases:
    • Terraform for multi-cloud resource provisioning
    • AWS CloudFormation for AWS-specific deployments
    • Azure Resource Manager (ARM) templates for Azure resources
    • Google Cloud Deployment Manager for GCP
  • Implement configuration management using tools like Ansible, Chef, Puppet, or SaltStack.
    • Use Terraform to provision consistent Kubernetes clusters across AWS EKS and Azure AKS.
    • Implement Ansible playbooks for consistent configuration of web servers across different cloud providers.
• Version Control and Collaborative Workflows:
  • Proficient in Git-based workflows, including advanced features like branching strategies and code reviews.
  • Experience with multiple Git platforms: GitHub, GitLab, Bitbucket, Azure DevOps Repos.
  • Implement GitOps practices for infrastructure and application deployments.
• Containerization and Orchestration:
  •  Expertly use Docker for containerization and implement best practices for container security.
  • Implement and manage container orchestration using:
    • Kubernetes (including managed services like EKS, AKS, GKE)
    • Docker Swarm
    • AWS ECS/Fargate
    • Azure Container Instances
  • Develop and maintain local Docker environments for development teams.
    • Set up a multi-region Kubernetes cluster using EKS and AKS for high availability.
    • Implement automatic scaling and self-healing for containerized applications across cloud providers.
• CI/CD and Deployment Automation:
  • Implement and manage CI/CD pipelines using various tools:
    • Jenkins
    • GitHub Actions
    • GitLab CI
    • Azure DevOps Pipelines
    • AWS CodePipeline
    • Google Cloud Build
  • Integrate automated testing, security scanning, and compliance checks into deployment processes.
    • Create a multi-stage pipeline that builds, tests, and deploys to staging environments in AWS and production in Azure.
    • Implement blue-green deployments for zero-downtime updates across multiple cloud platforms.
• Security and Compliance:
  • Apply a self-auditing mindset to continuously optimize and secure infrastructure across all cloud platforms.
  • Create hardened container images compliant with various standards (e.g., DoD STIG, CIS Benchmarks).
  • Implement and manage cloud-native security services:
    • AWS: GuardDuty, Security Hub, IAM
    • Azure: Security Center, Sentinel, Azure AD
    • GCP: Security Command Center, Cloud IAM
    • Implement a centralized logging and monitoring solution that aggregates data from multiple cloud providers.
    • Set up automated compliance checks using AWS Config, Azure Policy, and GCP Security Command Center.
• API Management and Integration:
  • Design and implement secure API architectures across multiple cloud platforms.
  • Experience with various API Gateway technologies:
    • AWS API Gateway
    • Azure API Management
    • Kong
    • APISIX
  • Implement API security best practices, including OAuth, API keys, and rate limiting.
• AI and Machine Learning Support:
  • Understand AI model deployment and optimization techniques across cloud platforms:
    • AWS SageMaker
    • Azure Machine Learning
    • Google Cloud AI Platform
    • OnPrem Model hosting
  • Implement MLOps practices for model versioning, deployment, and monitoring.
• Project Management and Collaboration:
  • Proficient in multiple project management and collaboration tools:
    • Atlassian suite (Jira, Confluence)
    • Microsoft Teams and Azure DevOps
  • Implement and maintain documentation for multi-cloud architectures and processes.
• Scripting and Automation:
  • Strong proficiency in multiple scripting languages for cross-platform automation:
    • Python
    • PowerShell
    • Bash
    • Go
  • Develop custom tools and scripts to enhance multi-cloud management and security.
  • Examples:
    • Create a Python script that audits and reports on resource usage across AWS, Azure, and GCP.
    • Develop a PowerShell module for automated user management across on-premises Active Directory and cloud identity providers.

Required Qualifications:

• 7+ years of experience in DevOps, with a strong focus on multi-cloud environments and security integration (DevSecOps).
• Extensive experience with at least two major cloud platforms (AWS, Azure, GCP, OCI).
• Proficiency in multiple Infrastructure as Code tools (Terraform, CloudFormation, ARM templates).
• Strong knowledge of containerization technologies (Docker) and orchestration platforms (Kubernetes, Docker Swarm).
• Experience with various CI/CD tools and methodologies across different cloud platforms.
• Solid understanding of network security principles and implementation in multi-cloud environments.
• Expertise in at least two scripting languages (Python, PowerShell, Bash, or Go).
• Familiarity with Agile methodologies and various project management tools.

Preferred Qualifications:

• Multiple cloud certifications (e.g., AWS Certified DevOps Engineer, Azure DevOps Engineer Expert, Google Cloud Professional DevOps Engineer).
• Experience with multi-cloud cost optimization and FinOps practices.
• Knowledge of AI/ML deployment and optimization techniques across different cloud platforms.
• Familiarity with multiple compliance frameworks (HIPAA, PCI-DSS, GDPR) in addition to DoD STIG.

Salary:

• $140,000- $150,000

This role offers an exciting opportunity to work at the forefront of multi-cloud DevSecOps, driving innovation, security, and efficiency across diverse technology environments. The successful candidate will play a crucial role in shaping our organization's cloud strategy and ensuring the delivery of robust, secure, and scalable solutions across multiple platforms.

Physical Demands:

While performing the duties of this job, the employee is regularly required to sit. The employee frequently is required to walk; use hands to finger, handle or feel; reach with hands and arms; and talk or hear. The employee is occasionally required to stand. The employee may lift or move objects up to 5 pounds. Specific vision abilities required by this job include close vision, distance vision, color vision, and ability to adjust focus.

MicroHealth will recruit, hire, train, and promote persons in all job titles, and ensure that all other personnel actions are administered without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, disability, or status as a protected veteran and ensure that all employment decisions are based only on valid job requirements.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

If you need a reasonable accommodation due to a disability for any part of the employment process, please send an e-mail to [email protected] with your request and contact information.