DevSecOps Engineer

About The Position

Requirements

• 5+ years of experience writing production-quality code in C++ and Python.
• Deep understanding of data structures, algorithms, and the complexities of large-scale distributed systems and real-time data processing.
• Advanced knowledge of encryption (TLS/PKI), authentication protocols (OAuth/SAML), and container/workload hardening.
• Hands-on experience building custom telemetry, dashboards, and alerting for fleet-wide health and security monitoring.
• Expert-level grasp of UNIX / Linux system hardening, networking protocols (TCP/IP, DNS), and securing high-performance compute hardware.

Nice To Haves

• Hands-on experience designing or operating secure OTA/update pipelines, including artifact signing, verification, and rollback safety
• Strong background in infrastructure security at scale, including Kubernetes, container runtimes, and workload isolation in high-risk environments
• Experience building or hardening device identity and fleet authentication systems, including certificate lifecycle management and device attestation
• Familiarity with robotics middleware or real-time systems (e.g., ROS/ROS2, DDS, or similar distributed communication frameworks)
• Experience applying zero-trust principles to distributed systems spanning cloud and edge environments
• Experience with adversarial testing or security research, particularly in distributed or infrastructure-level systems
• Strong understanding of software supply chain security, including SBOMs, build provenance, and secure artifact pipelines

Responsibilities

• Design and build production-grade software to automate security tasks (e.g., automated certificate rotation, secret management, or self-healing network policies for autonomous systems).
• Own the service level objectives/indicators, and error budgets for core security infrastructure, including identity management, encrypted communication channels, and high-availability inference services.
• Architect and manage secure-by-default infrastructure for both cloud and edge deployments to ensure repeatable and audited systems.
• Lead technical incident response for both security breaches and system outages, focusing on root cause analysis and code-based fixes to harden the UNIX/Linux environment.
• Develop and maintain automated security scanning (SAST/SCA/secret detection) within CI/CD pipelines to empower developers to ship code securely to the field.

Benefits

• Base pay offered may vary considerably depending on geographic location, job-related knowledge, skills, and experience.