(Senior) Engineer, DevSecOps (McLean, VA, US)

The incumbent will automate security into the DevOps lifecycle, collaborating across devel-opment, security, and operations teams to foster a security-first culture, and "shifting security left" by integrating security practices from the planning stage of software development. Key tasks involve automating security pro-cesses like vulnerability scanning and threat modelling, implementing secure coding practices, performing risk assessments, monitoring, and responding to security incidents to deliver secure, reliable software
ROLE DESCRIPTION SUMMARY
The incumbent will automate security into the DevOps lifecycle, collaborating across devel-opment, security, and operations teams to foster a security-first culture, and "shifting security left" by integrating security practices from the planning stage of software development. Key tasks involve automating security pro-cesses like vulnerability scanning and threat modelling, implementing secure coding practices, performing risk assessments, monitoring, and responding to security incidents to deliver secure, reliable software.
PRIMARY RESPONSIBILITIES / KEY RESULT AREAS

• SDLC Automation: Automate repetitive tasks across the SDLC including infrastructure provisioning, software testing and software deployment;
• Infrastructure automation: Write IaC code to define and manage the infrastructure to ensure automatic provisioning and optimization;
• CI/CD Pipelines: Design, build and maintain CI/CD pipelines to enable continuous integration, testing, and development of software;
• Monitoring and Logging: Implement and manage monitoring, logging and alerting systems to ensure Reliability, Security, Performance efficiency, Cost Optimization and Operational Excellence;
• Security & Compliance: Automate Security best practices into the SDLC and IaC;
• Troubleshooting and Optimization: Analyse production issues, perform root cause analysis, and troubleshoot deployment failures or infrastructure outages;
• Collaboration: Collaborate with software development, ground and satellite operation, QA, Architecture, Security and IT teams to ensure seamless integration and smooth software development lifecycle

COMPETENCIES

• Ability to work in an agile, high-paced environment and deliver within tight timelines
• Ability to tackle complex projects and develop workable solutions
• Ability to take ownership and drive a task to the conclusion without supervision
• Excellent analytical and problem-solving skills
• Excellent collaboration skills with the ability to communicate effectively with cross-functional teams
• Excellent communication skills to collaborate effectively with various teams and stakeholders

QUALIFICATIONS & EXPERIENCE

• Graduate in Computer Science or Software Engineering (Bachelor's or Master's Degree level)
• Certified Cloud Engineer or Equivalent
• Minimum 8 years of relevant work experience in Cybersecurity, Cloud Management, Software Development or System Administration
• Solid Grasp on Linux Server Kubernetes Cluster Administration
• Solid Grasp of Software Security Concepts
• Excellent understanding of Radio Frequency and Satellite Communications
• Excellent understanding of the entire Software Development Lifecycle
• Knowledge of the best security practices and principles
• Excellent expertise in programming and automations

OTHER KEY REQUIREMENTS / COMMENTS

• NATO Security Clearance

SES and its Affiliated Companies are committed to providing fair and equal employment opportunities to all. We are an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, gender, pregnancy, sex, sexual orientation, gender identity, national origin, age, genetic information, protected veteran status, disability, or any other basis protected by local, state, or federal law.
For more information on SES, click here .