Principal Software Engineer (DevSecOps)
Brea, California, United States
Safran Passenger Innovations
At Safran Passenger Innovations, we make flying fun by focusing on maximizing the Passenger Experience. As an innovative In-Flight Entertainment and Connectivity (IFEC) company we design, engineer, manufacture, sell and support world-class In-Flight Entertainment and Connectivity solutions. Our products are constantly evolving, solving complex media distribution, playback, and networking problems in a secure and demanding on-wing environment. Safran IFEC products are utilized by many of the world’s premier air carriers. Step aboard and help us by creating the best in-flight experiences for today and beyond!
Job Summary:
As a Principal DevOps Software Engineer on the Software Development team, you will engage with an experienced cross-disciplinary staff to support the design and implementation of innovative In-Flight Entertainment (IFE) products applying state-of-the-art DevSecOps principles and technologies to enhance and modernize all aspects of our CI/CD platform, including build and deployment of both on-wing and off-wing Compute, Networking and Storage components of our software. Working closely with inter-disciplinary teams you will participate in the architecture, design, development, test, and integration phases of software features for the RAVE IFEC systems and products using hybrid development and deployment methodologies. You must be a self-starter, responsive, flexible, and able to succeed within an open, collaborative peer environment.
Duties and Responsibilities:
- Define and implement a governance plan, design, develop and improve CI/CD processes and tools to support the building of complex distributed systems in a low power, low latency, heat-conscious environment
- Troubleshoot, triage, debug, and resolve build and deployment problems
- Demonstrate a passion for continuous improvement and take personal ownership of quality
- Provide guidance, mentoring, training, and support across product development and the broader IFE business with respect to DevSecOps guidelines
- Provide realistic estimates, foster a culture of transparency, and meet agreed-upon commitments
- Facilitate communication internally, with stakeholders, users, and/or customers on specifications, architecture, design, implementation, and approvals
- Actively participate, engage, and contribute during meetings
- Leverage other internal organizations to facilitate product success
- Prepare and present technical information for large and diverse audiences
- Assess third-party and open-source software and in some cases implement the same
- Adhere to, contribute to, and help improve both organizational processes and the software development lifecycle (SDLC)
Pay: $148,000 - $197,000 per year
Requirements
- Bachelor’s Degree in Engineering, Computer Science, or equivalent experience in a related field
- 3-6 years of experience in a Senior (or above) level role within DevSecOps
- 15+ years of overall DevOps/DevSecOps experience
Required Experience
- 5+ years of proven experience in governance planning, architecting/designing, implementing and deploying CI/CD pipelines using various tools like Ansible, Puppet, Jenkins, Terraform etc. and AWS cloud based technologies
- Proven experience managing source code / artifact repositories like SVN, Bitbucket, Artifactory, AWS ECR etc
- Proven experience integrating CI/CD pipeline with source code and package library analysis/scanning tools like SonarCube, Mend.io, Snyk, Coverity etc
- Proven experience setting up and managing ticketing and collaborative tooling like JIRA and Confluence
- Experience with Infrastructure as Code and infrastructure testing strategies
- Experience with fully automating CI/CD pipelines end-to-end, from code commits to production targeted for both cloud and resource constrained embedded devices
- Experience with containerization technologies like Kubernetes, Docker, AWS ELK, AWS ECS and their use within DevSecOps
- Experience design and implementing CI/CD pipelines for C, C++, C#, nodejs based applications for ARM and x86 processors
- Experience with various security/cryptography concepts such as PKI, SSL and TLS with respect to DevSecOps process targeted for Cloud and embedded devices
- Strong scripting skills, including shell scripts, Perl, Python, Groovy, Helm, etc;
- Experience in installing, configuring, and troubleshooting UNIX/Linux/Windows based environments hosted both in cloud and on-prem
- Understanding of Platform as a Service (PaaS) concepts and how to construct compute platforms from physical hardware all the way up the stack. This includes the ability to assess/evaluate and utilize primitives in a constrained environment
- Skilled at designing high availability platforms with quick recovery objectives
- Understanding of Linux kernel and options to create custom Linux distributions leveraging Yocto
- Familiarity with Amazon AWS Policy, Configuration, and Security Management tools
- Experience with security engineering concepts and practices including system and network security, authentication, protocols, cryptography, DB and application security in regulated environments (PCI-DSS, PII, GDPR, and CCPA Standards and Policies)
- Experience with formal Engineering Requirements documentation and processes
Desired Experience
- Understanding of embedded system software architecture and constraints particularly with ARM/x86 processors
- Cellular modem/firmware knowledge
- Adept at implementing internal tools to support development and troubleshooting for the entire DevSecOps stack
- Understanding of Video/Media content, playback, delivery, and streaming including DRM as well as understanding of distributed file sharing concepts like BitTorrent
Tags: Ansible Application security AWS Bitbucket C CCPA CI/CD Cloud Computer Science Confluence Cryptography DevOps DevSecOps Docker ELK GDPR Governance Helm Jira Kubernetes Linux Network security Node.js PaaS Perl PKI Puppet Python Scripting SDLC Terraform TLS UNIX Windows
Perks/benefits: Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs