DevSecOps Engineer

Harvard University - Boston, MA4.3

Full-timeEstimated: $87,000 - $120,000 a year
Job Code384358 Sys Prog/Analysis/Admin Sr
Job-Specific Responsibilities

The Blavatnik Institute at Harvard Medical School is home to world-class faculty who aim to solve the greatest problems of human health through fundamental and translational biomedical research. The HMS Department of Information Technology, a key partner in supporting computation-based research for the Institute, has an exciting opportunity for an experienced DevSecOps Engineer interested in empowering the school's computational research community by leading the integration of secure cloud-based research computing infrastructure with existing on-premises HPC infrastructure, to support the central mission of the Institute.

The DevSecOps Engineer, reporting to the Senior Director of the HMS DevOps team and with a dotted line to the HMS Information Security and IT Compliance Officer, will be responsible for integrating firewall and other security systems into the monitoring ecosystems used by HMS and Harvard University IT (HUIT). The role will also integrate public cloud-based secure research compute containers with existing on-premise computer systems, and will maintain modern, reusable, sustainable systems and configurations, utilizing up-to-date best practices for development and security technologies, such as policy-driven provisioning of bare-metal-as-a-service, containerized services, fully automated/CI driven system configuration, reporting, monitoring, and trend analysis. Additional job responsibilities include but are not limited to working with end-users and team members to assist in the development of new service offerings to meet research needs.

This position will participate in the scripting of tests and the mining of data from various log systems to better maintain the High Availability Compute Cluster and other HMS IT projects. A usable understanding of basic programming practices and the ability to learn new languages and frameworks on the job is required.

Integration of disparate security and monitoring systems between HMS and HUIT
Utilize system deployment and management systems to maintain currently deployed systems
Function as subject matter expert for security on the DevOps team
Analyze existing systems and related data to support initiatives, and ongoing system implementations
Assist in the routing of incoming service requests and trouble tickets
In conjunction with principal users and data owners, participate in decision-making about system design and implementation
Work within a diverse team to develop new service offerings and extend existing infrastructure
Function as a point person for security best practices
Participate in an on-call rotation
Other duties as assigned

Basic Qualifications

A bachelor’s degree in a quantitative discipline, such as mathematics, computer science or engineering and 5 years of experience in the fields of DevOps/system administration and/or cybersecurity (or related fields). Additional experience will be considered in lieu of formal education
Development experience in at least two programming/scripting languages (java, C, bash, Python, Perl, Ruby)
Demonstrated experience with cybersecurity fundamentals

Additional Qualifications

Familiarity with Open Source projects and methodologies
Working knowledge of secure software development lifecycle
Experience with static code analysis tools (E.G., Checkmarx) is preferred
Experience with secure software deployment in cloud environments
Experience with secure software design
Familiarity with virtual and serverless environments
Basic understanding of virtualization and container technologies (VMWare, AWS, Docker, Singularity)
Source management, preferably git
Automation and configuration management (puppet/Ansible)
Basic understanding of computer hardware, network equipment, and storage/backup solutions
Basic grasp of *NIX/Linux system administration and fundamentals (RedHat derivatives)
Familiarity with system monitoring and configuration (Zabbix/Nagios/Ganglia/Sensu)
Basic system and application troubleshooting skills
Familiarity with relational and /or NoSQL databases
Experience working in scientific research environments
Experience working with large data sets
Protected data, HIPAA, Health Information Privacy experience
Experience with network-connected instrumentation or non-direct terminal devices

Additional Information

Harvard offers an outstanding benefits package including:
Time Off: 3 - 4 weeks paid vacation, paid holiday break, 12 paid sick days, 11.5 paid holidays, and 3 paid personal days per year.

Medical/Dental/Vision: We offer a variety of excellent medical plans, dental & vision plans, all coverage begins as of your start date.

Retirement: University-funded retirement plan with full vesting after 3 years of service.

Tuition Assistance Program: Competitive tuition assistance program, $40 per class at the Harvard Extension School and discounted options through participating Harvard grad schools.

Transportation: Harvard offers a 50% discounted MBTA pass as well as additional options to assist employees in their daily commute.

Wellness options: Harvard offers programs and classes at little or no cost, including stress management, massages, nutrition, meditation, and complementary health services.

Harvard access to athletic facilities, libraries, campus events and many discounts throughout metro Boston.

The Harvard Medical School is not able to provide visa sponsorship for this position.

Job FunctionInformation Technology


LocationUSA - MA - Boston

IT-Web and Advanced Research P

Time StatusFull-time

00 - Non Union, Exempt or Temporary

Salary Grade058
Pre-Employment Screening

Criminal, Education, Identity

EEO Statement

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, gender identity, sexual orientation, pregnancy and pregnancy-related conditions, or any other characteristic protected by law.