DevSecOps Engineer
Description:
Please review the job details below.
Maxar is seeking a solutions-oriented DevSecOps Engineer with a strong interest in information system security to contribute to solving unique and challenging technical problems in an agile and fast-paced team environment in support of our customer's national security mission. We are seeking people who embrace new technology and processes and thrive in a culture of continuous improvement. The ideal candidate will value both teamwork and independent problem-solving to contribute to a small, multi-disciplinary team of full-stack software developers, integration engineers and security professionals to achieve dynamic goals on a rigorous schedule. Maxar encourages strong contributors who demonstrate growth potential with career advancement opportunities to advance deeper into the Information System Security and DevSecOps professions.
Note: TS/SCI Clearance is required
Location: Westminster, Colorado
Principal Responsibilities:
Implement new CI/CD pipelines and maintain existing GitLab-Jenkins CI/CD pipelines.
Implement security hardening including STIG benchmarks and vendor best practices on containerized applications using Docker files and/or Helm charts.
Periodically revisit existing pipelines and plan improvements.
Take existing and novel applications and containerize them to run in a Kubernetes cluster.
Work with software and system engineers to apply automated tests and documented processes.
Integrate static code analysis and other security mechanisms into CI/CD pipeline.
Overhaul existing container projects to better work with customer hardware/system requirements.
Communicate with multidisciplinary team and articulate technical concepts and ideas effectively.
Utilize a deep understanding of service topology and their dependencies to troubleshoot issues and improve security posture and runtime performance.
Skills Required
4-8 years of technical experience including systems administration, information assurance and DevOps
Familiarity with Army ATO information system security requirements and experience applying STIG security controls into containerized environments
Hands-on experience with Kubernetes administration, including deployment and management
Familiarity with Helm for managing Kubernetes applications and deployments
Hands-on experience with AWS
Experience with integrating commercial data providers into existing software stack
Demonstrated experience with Linux administration
Strong Red Hat Linux skills
Strong familiarity with version control systems (Git) and collaboration tools (GitHub, GitLab)
Communicates effectively with a team both verbally and in writing
Understanding of networking and security best practices
Holds a TS/SCI security clearance
CompTIA Security+, CASP+, GSEC or comparable certification
Experience with GITLAB CI-CD pipeline building
Can work independently in a fast-paced dynamic environment and manage multiple priorities
Familiarity with ground station information systems used by the intelligence community, geospatial context, and/or big data analytics
Experience with Microk8s and Docker registry administration
Experience with PostgreSQL database administration
Experience implementing TLS and certificate-based endpoint authentication
Experience with Jenkins build automation server administration
Additional Skills Desired
Familiarity with common industry software tools and common IT and software development concepts and best practices
Familiarity with hybrid AWS cloud/on-prem architecture and VMware virtualized environment
Experience securing API endpoint communication in a custom application
Experience securing AWS virtual hosts
Experience with securing networking between AWS virtual hosts/applications
Experience with Microsoft Active Directory
Experience with automated vulnerability scanning and/or static code analysis software
Strong Python and/or BASH scripting skills
In support of pay transparency at Maxar, we disclose salary ranges on all U.S. job postings. The successful candidate's starting pay will fall within the salary range provided below and is determined based on job-related factors, including, but not limited to, the experience, qualifications, knowledge, skills, geographic work location, and market conditions. Candidates with the minimum necessary experience, qualifications, knowledge, and skillsets for the position should not expect to receive the upper end of the pay range.
The base pay for this position within California, Colorado, Hawaii, and the Washington, DC metropolitan area is: $115,000.00 - $135,000.00
For all other states, we use geographic cost of labor as an input to develop market-driven ranges for our roles, and as such, each location where we hire may have a different range.
We offer a comprehensive package of benefits including paid time off, health and welfare insurance, and 401(k) to eligible employees. You can find more information on our benefits at:
The application window is three days from the date the job is posted and will remain posted until a qualified candidate has been identified for hire. If the job is reposted regardless of reason, it will remain posted three days from the date the job is reposted and will remain reposted until a qualified candidate has been identified for hire.
The date of posting can be found on Maxar's Career page at the top of each job posting.
To apply, submit your application via Maxar's Career page.
Maxar Technologies values diversity in the workplace and is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.