Staff Software Engineer

Dragos

2d•$192,000•Remote

About The Position

Dragos is seeking a highly skilled Staff Software Engineer to join our Vulnerability Analysis Content Team. In this position you will play a pivotal role in accelerating the delivery of vulnerability findings to our customers through robust automation and tooling. Collaborating closely with our team of vulnerability analysts, you will be responsible for designing, building, and maintaining the CI/CD pipeline that powers our analysis review and deployment workflows. This critical function supports the rapid and accurate dissemination of vulnerability intelligence to protect operational technology (OT) environments.

Requirements

8+ years in a production software development environment, with 4+ years of experience with Python development.
3+ years of experience designing and maintaining CI/CD pipelines using tools such as Jenkins, GitLab CI, GitHub Actions, or similar.
Strong experience with containerization technologies (Docker, Kubernetes) and infrastructure-as-code (Terraform, Ansible, or similar).
Experience with cloud platforms (AWS, Azure, or GCP) and cloud-native services.
Demonstrated ability to architect, design, and build developer tooling and workflow automation that improves team productivity.
Proficiency with git workflows, branching strategies, and code review processes at scale.
Solid understanding of Linux systems administration and command-line tooling.
Strong communication skills with the ability to translate technical concepts for non-technical stakeholders.

Nice To Haves

Experience working in a security-focused environment or with security content delivery pipelines is a plus.
ICS/OT knowledge and experience is nice to have.
Experience with observability tools (Prometheus, Grafana, ELK stack, or similar) is helpful.
Background in vulnerability management, threat intelligence, or security operations is a bonus.

Responsibilities

Design, build, and maintain CI/CD pipelines for content review, validation, and deployment, including vulnerability analysis, asset catalogs, and report generation.
Develop and improve analyst workflows and tooling to streamline the vulnerability analysis and publication process.
Own technical strategy for the content delivery pipeline, including architecture decisions, design documentation, and design review.
Partner with Vulnerability Analysts to understand pain points and automate repetitive tasks in the content creation lifecycle.
Implement automated testing frameworks including unit, integration, and end-to-end tests for vulnerability content validation.
Design and enforce data validation, schema enforcement, and content quality assurance automation to ensure accuracy and consistency of vulnerability findings.
Lead cross-team initiatives to integrate vulnerability content delivery into broader Dragos systems.
Mentor junior engineers and provide technical leadership on DevOps and automation initiatives.
Evaluate and adopt new technologies and tools to continuously improve deployment velocity and content quality.