DevSecOps Engineer

Please review the job details below.

Maxar is seeking a solutions-oriented DevSecOps Engineer with a strong interest in information system security to contribute to solving unique and challenging technical problems in an agile and fast-paced team environment in support of our customer’s national security mission.  We are seeking people who embrace new technology and processes and thrive in a culture of continuous improvement.  The ideal candidate will value both teamwork and independent problem-solving to contribute to a small, multi-disciplinary team of full-stack software developers, integration engineers and security professionals to achieve dynamic goals on a rigorous schedule.  Maxar encourages strong contributors who demonstrate growth potential with career advancement opportunities to advance deeper into the Information System Security and DevSecOps professions.

Note: TS/SCI Clearance is required

Location:  Westminster, Colorado

Principal Responsibilities:

• Implement new CI/CD pipelines and maintain existing GitLab-Jenkins CI/CD pipelines.
• Implement security hardening including STIG benchmarks and vendor best practices on containerized applications using Docker files and/or Helm charts.
• Periodically revisit existing pipelines and plan improvements.
• Take existing and novel applications and containerize them to run in a Kubernetes cluster.
• Work with software and system engineers to apply automated tests and documented processes.
• Integrate static code analysis and other security mechanisms into CI/CD pipeline.
• Overhaul existing container projects to better work with customer hardware/system requirements.
• Communicate with multidisciplinary team and articulate technical concepts and ideas effectively.
• Utilize a deep understanding of service topology and their dependencies to troubleshoot issues and improve security posture and runtime performance.

Skills Required

• 4-8 years of technical experience including systems administration, information assurance and DevOps
• Familiarity with Army ATO information system security requirements and experience applying STIG security controls into containerized environments
• Hands-on experience with Kubernetes administration, including deployment and management
• Familiarity with Helm for managing Kubernetes applications and deployments
• Hands-on experience with AWS
• Experience with integrating commercial data providers into existing software stack
• Demonstrated experience with Linux administration
• Strong Red Hat Linux skills
• Strong familiarity with version control systems (Git) and collaboration tools (GitHub, GitLab)
• Communicates effectively with a team both verbally and in writing
• Understanding of networking and security best practices
• Holds a TS/SCI security clearance
• CompTIA Security+, CASP+, GSEC or comparable certification
• Experience with GITLAB CI-CD pipeline building

• Can work independently in a fast-paced dynamic environment and manage multiple priorities
• Familiarity with ground station information systems used by the intelligence community, geospatial context, and/or big data analytics
• Experience with Microk8s and Docker registry administration
• Experience with PostgreSQL database administration
• Experience implementing TLS and certificate-based endpoint authentication
• Experience with Jenkins build automation server administration

Additional Skills Desired

• Familiarity with common industry software tools and common IT and software development concepts and best practices
• Familiarity with hybrid AWS cloud/on-prem architecture and VMware virtualized environment
• Experience securing API endpoint communication in a custom application
• Experience securing AWS virtual hosts
• Experience with securing networking between AWS virtual hosts/applications
• Experience with Microsoft Active Directory
• Experience with automated vulnerability scanning and/or static code analysis software
• Strong Python and/or BASH scripting skills

In support of pay transparency at Maxar, we disclose salary ranges on all U.S. job postings.  The successful candidate’s starting pay will fall within the salary range provided below and is determined based on job-related factors, including, but not limited to, the experience, qualifications, knowledge, skills, geographic work location, and market conditions. Candidates with the minimum necessary experience, qualifications, knowledge, and skillsets for the position should not expect to receive the upper end of the pay range.

The base pay for this position within California, Colorado, Hawaii, and the Washington, DC metropolitan area is:

For all other states, we use geographic cost of labor as an input to develop market-driven ranges for our roles, and as such, each location where we hire may have a different range.

We offer a comprehensive package of benefits including paid time off, health and welfare insurance, and 401(k) to eligible employees. You can find more information on our benefits at: https://www.maxar.com/careers/benefits

The application window is three days from the date the job is posted and will remain posted until a qualified candidate has been identified for hire.  If the job is reposted regardless of reason, it will remain posted three days from the date the job is reposted and will remain reposted until a qualified candidate has been identified for hire. 

The date of posting can be found on Maxar’s Career page at the top of each job posting.

To apply, submit your application via Maxar’s Career page.

Maxar Technologies values diversity in the workplace and is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.