Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
Overview:
The Cyber Fusion Center (CFC) is seeking a highly motivated Senior Security Engineer to join the Infrastructure Security team. This role is ideal for engineers with 3–5 years of experience in DevOps, Cloud Infrastructure, Platform Engineering, or Site Reliability Engineering (SRE) who are passionate about automation and interested in building a career in cybersecurity. As part of the Infrastructure Security team, you will help modernize, automate, and secure the platforms that protect the Qualys production environment. You will work closely with the DevOps, Cloud Operations, and Engineering teams to migrate Infrastructure Security services from traditional virtual machine deployments to Kubernetes, integrate applications with enterprise CI/CD platforms, automate deployments using Infrastructure as Code (IaC), and improve the scalability, resilience, and operational efficiency of critical security infrastructure.
Key Responsibilities:
Cloud & Infrastructure Modernization
- Migrate Infrastructure Security services from traditional virtual machine deployments to Kubernetes.
- Containerize Infrastructure Security applications using Docker and Kubernetes.
- Develop and maintain Kubernetes deployment manifests and Helm charts.
- Design highly available, scalable, and resilient deployments for Infrastructure Security services.
- Collaborate with DevOps teams to onboard Infrastructure Security applications onto enterprise Kubernetes platforms.
- Continuously improve infrastructure reliability through cloud-native technologies and modern deployment practices.
DevOps & Automation
- Develop Infrastructure as Code (IaC) using Terraform.
- Build deployment automation using Ansible, Python, Bash, or similar scripting languages.
- Automate infrastructure provisioning, deployments, upgrades, patching, and configuration management.
- Develop reusable automation workflows and deployment templates.
- Eliminate manual operational activities through automation and continuous improvement.
Build Infrastructure & CI/CD Integration
- Onboard Infrastructure Security applications onto enterprise CI/CD platforms.
- Develop and maintain deployment pipelines using Jenkins, GitHub Actions, GitLab CI/CD, or similar enterprise platforms.
- Integrate Infrastructure Security applications with enterprise artifact repositories.
- Automate application deployment, testing, upgrades, and release workflows.
- Support secure build processes through secrets management, code signing, and deployment automation.
- Work closely with DevOps teams to leverage enterprise platform capabilities and CI/CD best practices.
Linux, Kubernetes & Cloud Infrastructure
- Administer Linux servers supporting Infrastructure Security platforms.
- Deploy and manage applications across Kubernetes and virtual machine environments.
- Perform Linux administration, troubleshooting, patching, and operating system hardening.
- Support Infrastructure Security services across on-premises and cloud environments.
- Monitor infrastructure health, performance, and availability.
Infrastructure Security Services
- Support the deployment, automation, and lifecycle management of Infrastructure Security platforms.
- Assist in managing Identity & Access Management (IAM) platforms.
- Support LDAP/LDAPS authentication services.
- Assist in managing Public Key Infrastructure (PKI) and certificate lifecycle management.
- Support Privileged Access Management (PAM) platforms.
- Assist in managing Secrets Management platforms.
- Support secure remote access platforms such as Teleport.
- Participate in Infrastructure Security platform upgrades, maintenance, and automation initiatives.
Production Operations
- Participate in a 24x7 on-call support rotation.
- Troubleshoot production incidents and restore services within defined SLAs.
- Perform Root Cause Analysis (RCA) and implement preventive improvements.
- Collaborate with Engineering, Operations, DevOps, and Platform teams during production incidents.
- Create and maintain operational documentation, deployment guides, and technical runbooks.
Required Qualifications
- Bachelor's degree in Computer Science, Information Technology, Engineering, or equivalent practical experience.
- 3–5 years of hands-on experience in DevOps, Cloud Infrastructure, Platform Engineering, Site Reliability Engineering (SRE), or Infrastructure Engineering.
- Strong Linux administration experience in enterprise production environments.
- Hands-on experience with Docker and Kubernetes.
- Experience deploying and managing containerized applications.
- Experience building and maintaining CI/CD pipelines using Jenkins, GitHub Actions, GitLab CI/CD, Azure DevOps, or similar enterprise platforms.
- Hands-on experience with Infrastructure as Code (Terraform).
- Experience with automation tools such as Ansible.
- Strong scripting skills using Python and/or Bash.
- Experience working with cloud platforms such as OCI, AWS, or Azure.
- Good understanding of networking fundamentals including TCP/IP, DNS, SSL/TLS, reverse proxies, and load balancers.
- Experience supporting highly available production environments.
- Strong troubleshooting, analytical, and problem-solving skills.
- Excellent verbal and written communication skills.
- Ability to work independently and collaboratively in a fast-paced environment.
- Willingness to participate in a 24x7 on-call support rotation.
Preferred Certifications
- Certified Kubernetes Administrator (CKA)
- Certified Kubernetes Application Developer (CKAD)
- HashiCorp Terraform Associate
- Red Hat Certified System Administrator (RHCSA)
- Red Hat Certified Engineer (RHCE)
- AWS Solutions Architect Associate
- Oracle Cloud Infrastructure Certification
- CompTIA Security+
What You'll Work On
As part of the Infrastructure Security team, you will contribute to several strategic initiatives including:
- Migrating Cyber Fusion Center owned Infrastructure Security services from virtual machines to Kubernetes.
- Modernizing and securing the Cyber Fusion Center Build Environment.
- Integrating Infrastructure Security applications with enterprise CI/CD platforms.
- Building Infrastructure as Code and deployment automation.
- Automating Infrastructure Security deployments and operational workflows.
- Supporting enterprise security platforms including IAM, PKI, PAM, Secrets Management, Secure Remote Access, and Code Signing.
- Improving the scalability, resilience, and operational efficiency of Infrastructure Security services through cloud-native technologies and automation.