Facebook Twitter
See All Jobs

Infrastructure Engineer

Rosslyn or Huntsville, AL (hybrid), 1099, W2

Apply Now

The primary focus of this role is building and maintaining a hybrid computing infrastructure in support of the Client’s Research organization. You will maintain an intranet composed of on-prem servers and AWS services, spec out and procure hardware, install and configure core infrastructure, and manage enclaves with hardware-in-the-loop (HIL) labs. Managing enclaves will involve utilizing and developing automation solutions for site deployments with tools like Ansible and software development for middleware to integrate services and automate tasks. Additionally, you will be responsible for supporting remote users utilizing Tailscale for VPN access and accounts managed with SSO. The secure enclaves you design, implement and manage provide the Research organization’s tools to engage the cyber threats faced by today’s operational technology (OT) platforms like planes, trains, and tanks. Your teammates will consist of Software Reverse Engineers, Cyber Threat Intelligence Analysts, and Cyber Threat Engineers. The team focuses on a wide range of research on defending critical national infrastructure, weapons platforms, and logistics. This position reports directly to the Senior Director of Platform Security.

Research environments include: Self-hosted and cloud computing environments. On-premise servers & network equipment. Remotely accessible enclaves for various research projects. Remotely accessible hardware-in-the-loop (HIL) labs. Intranet where FOSS and commercial web services are hosted. In-house developed middleware and services that automate a wide range of infrastructure tasks.

This role requires 4 days a week in office.

Responsibilities

  • Develop automation tools to enhance existing infrastructure
  • Provide basic administration services to a small team of expert technologists
  • Ansible role, playbook, and plugin development
  • Explore and evaluate best-fit software solutions to support the team
  • Build and deploy Docker images for various services
  • Run sites that are delivered over Tailscale VPN
  • Develop and maintain middleware written in Go, Python, or other preferred languages
  • Manage Gitlab-EE and Gitlab-Runners. Build CI/CD pipelines, preferably with Gitlab-CI
  • Build new and unique infrastructure solutions for Cyber Threat Engineers & Analysts, Reverse Engineers, and Machine Learning Engineers
  • Utilize various AWS services, such as Secrets Manager, EC2, Security Groups, Load Balancers, and more
  • Maintain documentation for operating and troubleshooting the on-prem infrastructure

Requirements

  • US Citizen able to obtain or hold a US Government Security Clearance
  • Strong ability to utilize Linux systems from the command line
  • Ability to write and utilize Ansible playbooks, roles, and plugins
  • Ability to write bash scripts
  • Ability to configure network firewalls to establish VLANs and manage other basic network security aspects
  • Ability to configure network equipment such as routers, switches, and firewalls
  • Possess strong software development proficiency with Python for the purpose of maintaining and troubleshooting internally developed software
  • Possess a minor software development proficiency with JavaScript, and PHP for the purpose of troubleshooting 3rd party software issues
  • Basic experience operating web services such as Gitlab-EE, Traefik, Youtrack
  • Experience or ability to learn Proxmox along with virtualization technologies like KVM/Qemu
  • Ability to build, deploy, and troubleshoot software running within Docker containers
  • Ability to configure computer hardware such as rackmount servers, Single-Board Computers (SBCs), and IoT devices
  • Some familiarity with computer security requirements and standards such as SOC2 and CMMC
  • Ability to utilize Kibana and create visualizations for monitoring purposes
  • Ability to use git, specifically Gitlab, for configuration management
  • Ability to deploy virtual machines with VMWare vSphere
  • Familiarity with authentication technologies like OpenIDConnect, SAML, or LDAP
Join ClearedCollab

Apply for this Job

Upload your CV/resume or any other relevant file. Max. file size: 1 MB.

© 2021 All Rights Reserved