Senior DevSecOps Engineer

Draper•Cambridge, MA

23h•Onsite

About The Position

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit www.draper.com. Designs and operates secure, automated CI/CD pipelines using GitLab CI/CD for mission-critical embedded and flight software systems, enabling reproducible builds, integrated security controls, and compliant delivery in constrained and air-gapped environments. Partners with software, systems, and cybersecurity teams to standardize toolchains, enforce policy-as-code, and meet defense standards (e.g., DO-178C, NIST 800-53, RMF, STIGs). Requires proficiency in GitLab (pipelines, runners, package registry), scripting (Python, Bash), and systems languages (C/C++), along with experience in cross-compilation (GCC/Clang, Yocto, Buildroot), RTOS platforms (VxWorks, FreeRTOS, Zephyr), containerization (Docker/Podman), Kubernetes, infrastructure-as-code (Terraform, Ansible), and software supply chain security (SAST/DAST/SCA tools, SBOMs, artifact signing). Familiarity with Linux hardening, FIPS environments, PKI/TLS, and delivery to classified or disconnected systems is expected.

Requirements

Proficiency in GitLab (pipelines, runners, package registry)
Scripting (Python, Bash)
Systems languages (C/C++)
Experience in cross-compilation (GCC/Clang, Yocto, Buildroot)
RTOS platforms (VxWorks, FreeRTOS, Zephyr)
Containerization (Docker/Podman)
Kubernetes
Infrastructure-as-code (Terraform, Ansible)
Software supply chain security (SAST/DAST/SCA tools, SBOMs, artifact signing)
Familiarity with Linux hardening, FIPS environments, PKI/TLS, and delivery to classified or disconnected systems
Curiosity-driven approach to solving complex, customer-driven problems as part of a multi-disciplinary team
Ability to learn new programming languages and technologies quickly
Collaborate and communicate effectively and openly with multi-disciplinary program team members, program leadership, and non-technical personnel
A team player able to work in a fast-paced environment with the ability to balance multiple competing tasks and demands
Bachelor's in Computer Science or other related field
5-10 years experience in Software Engineering or related field
Ability to obtain and maintain a government security clearance

Nice To Haves

Master's degree is preferred
Secret Clearance is preferred

Responsibilities

Independently execute task assignments.
Designs algorithms using modern theory and proven techniques, adheres to software best practices.
Analyzes designs to demonstrate performance and functionality.
Develops and executes software tests to check compliance with requirements.
Prepares technical data, procedures, reports, drawings, manuals, and other required documentation.
Communicates with customers and stakeholders to establish requirements and describe the design and deliverables.
Drives solutions to complex problems, actively participate in requirements development, propose ways forward, and adapt appropriately to changes in requirements.
Contributes to system architecture decisions and leads the architecture of sub-systems.
Provides insight and suggest adaptations or modifications to processes and/or applications based on quantitative data or results.
Identifies project technical risks and develops and executes mitigation strategies.
Actively mentors less experienced staff and provides thoughtful, constructive feedback.
Lead a small team of software developers on projects.