Job Description
* Utilize the VA Enterprise Cloud Operational Tools (VAECOT), CSP native portals and tools, and/or other VA TRM-approved tools necessary to assist VA applications in the VA's enterprise cloud (VAECOT tools listed at the bottom)
* Utilize automation tools such as Terraform, Ansible, Cloud Formation, or similar
* Assist with upgrading, installing, and configure monitoring solution for AWS or Azure for Windows or Linux servers
* Create and maintain gold images/scripts
* Assist with reporting on current infrastructure status
* Document each application's production operations processes via a production operation manual (POM)
Required Skills & Experience
- Minimum of six (6) years setting up, configuring and using AZURE cloud operational tools
- Bachelor's Degree in computer science, engineering, or technical discipline (10 years additional work experience might be considered in lieu of a degree).
- Current Azure certification or a recent passing exam (e.g., AWS CCP, AWS CSA associate/professional, AZ-900, AZ-104)
- Experience in one or more of the VAECOT suite of tools, shown below.
- Able to pass a background check to obtain a Public Trust
- Must be a U.S. citizen
VAEC Operational Tools (VAECOT)
Some experience in one or more of the following tools is required:
Third party tools
- Application Performance Monitoring: Dynatrace, AppDynamics
- Cloud Security: Nessus, NetSkope, Enterprise Security External Change Council, Identity and Assessment Management, Continuous Monitoring as a Service, McAfee, eMASS, Centrify
- Cloud Governance: Turbot
- DevOps/Configuration Management/Help Desk: Ansible, Service Desk, ScienceLogic, ServiceNOW, SPLUNK, Jira ServiceDesk, Cloudockit, GitHub
- Containerization: Red Hat OpenShift
- Migration: CloudKey, Version One
- Reporting: Apptio
Cloud Service Provider (CSP) Operational Tools Tools/Services
- AWS Security: System Manager (Explorer and OpsCenter), CloudWatch, Config, CloudTrail, Elasticsearch ( Kinesis DataStreams), GuardDuty, Inspector, Key Management Service (KMS), Security Hub, Directory Service, Identity and Access Management, Resource Access Manager, Cognito, Secrets Manager, Certificate Manager, Artifact
- Aws Monitoring and Logging: Quicksight, Eventbridge (AWS Kinesis DataStreams), Simple Notification Service (SMS), Elasticsearch (AWS Kinesis DataStreams), CloudTrail, CloudWatch
- Aws Networking: Virtual Private Cloud (VPC), Route S3, API Gateway, Direct Connect, Appstream 2.0, Transit Gateway, Elastic LoadBalancer, Firewall Manager, WAF & Shield
- AWS Storage: Cloud Tiering Services to S3 from On-Prem, Simple Storage Services (S3), S3 Glacier , Storage Gateway, Elastic File System (EFS), Backup
- Azure Security: Monitor (Log Analytics and ASC), Event Hubs, Security Center (ASC) , Information Protection (AIP) , Key Vault, PowerBI, Network Watcher (Performance Monitor), Monitor (Log Analytics and ASC)
- Azure Monitoring and Logging: Information Protection (AIP), Advance Threat Protection, Security Center (ASC), Information Protection (AIP), Key Vault, Active Directory, Role Based Access Control (RBAC), Resource Manager (ARM), Resource Graph (ARG), Active Directory B2C, Key Vault, App Service, Service Trust Portal
- Azure Networking: Virtual Network, Traffic Manager, DNS, Application Gateway, Express Route, WebApps, FrontDoor, VPN Gateway, LoadBalancer, Firewall
- Azure Storage: Netapp File Service, Storage (Blobs, Disks, Files, Queues, Tables), Storage Archive Access Tier, Stor Simple, Files, Backup
Nice to Have Skills & Experience
* Active clearance for Public Trust (High-Risk) Position
* ITIL certification or ITIL knowledge
* Can provide technical support and OS-level remediations for Nessus scans
* Some experience with network and/or systems administration in Linux (Red Hat) or Windows environments
* Some knowledge of security regulations, best practices, countermeasures, compliance standards and current threats.
* Experience creating technical documentation, standard operating procedures, and how-to guides
* Helping application teams with system administration
* One or more Microsoft or Amazon cloud certifications
* Previous Federal Government experience preferably at VA
* Experience with at least one configuration technology including: Chef, Puppet, Ansible, Docker, Kubernetes, etc.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.