DevSecOps Engineer

Thales is a global technology leader trusted by governments institutions and enterprises to tackle their most demanding challenges. From quantum applications and artificial intelligence to cybersecurity and 6G innovation our solutions empower critical decisions rooted in human intelligence. Operating at the forefront of aerospace and space cybersecurity and digital identity were driven by a mission to build a future we can all trust.

Whom We Are Looking For

We are seeking a highly skilled and motivated DevSecOps engineer to join our team building the next generation of Air Traffic Management Systems. The ideal candidate plays a central role in enabling Continuous Delivery automation and the CLAMR approach to DevOps. You will be responsible for deploying CICD workflows integrating cybersecurity practices into the ATMS facilitating secure software development processes across both cloud and on-premises infrastructure strong expertise in trouble-shooting containerized workloads. You should be proficient in Linux and Bash scripting Containerization technologies Container Orchestration Frameworks Azure Cloud.

The candidate would be working in an agile squad in software delivery.

Responsibilities:

• Build and maintain CI/CD pipelines that support Agile teams and ARTs.
• Provision and manage environments (development test staging production).
• Use infrastructure as Code (IaC) tools (i.e. Terraform Helmfile Ansible Kubernetes Manifests) to ensure re-producibility and compliance.
• Ensure high availability and resilience in cloud and on-prem environments (e.g. zero-downtime deployment blue/green and canary release strategies)
• Manage the automation and toolchain integration for code quality security scanning release management and monitoring; automate repetitive tasks to improve flow efficiency across the value stream ensure the toolchain aligns with the Lean-Agile principles.
• Work closely with System Architects Release Train Engineers (RTEs) and agile teams to align on delivery practices.
• Provide DevOps coaching to teams so they adopt the right practices for version control branching strategies and automated testing.
• Support Program Increment (PI) planning by ensuring environments and pipelines is ready.
• Develop security practices (e.g. Secrets Management) into the software delivery CI pipelines to ensure the artefacts are of the premium quality level (shift-left security).
• Automate compliance checks and enforce policies (e.g. code signing container scanning).
• Develop systems observability practices (e.g. monitoring logs traces) to define and track metrics like deployment frequency lead time for changes change failure rate and MTTR.
• Collaborate with InfoSec and Compliance teams to run regular security audits risk assessments and data assessments.
• Contribute to disaster recovery planning and testing.

• Work in an agile cross-functional multinational team actively engaging to support the success of the team.

Requirements:

Education

• Bachelors in Computer Science or Information Technology
• Recognized Engineering degree

Essential Skills/Experience

• Strong expertise in Linux Operating System (i.e. Linux Process Sub-systems Linux FileSystem)
• Strong expertise in Linux shell scripting (i.e. bash scripting)
• Strong expertise in designing and deploying Continuous Integration Pipelines for Software Development Teams
• Strong expertise in Secrets Management and Configuration Management of subsystems in a Container Orchestration Framework such as Kubernetes.
• Strong expertise in designing deploying & securing OCI containerized workloads (e.g. Docker Kaniko) in Container Orchestration Frameworks (e.g. Kubernetes) running on-top of on-premises infrastructure and cloud infrastructure.
• Strong expertise in designing and implementing pro-active monitoring of production grade environments incident response and allows swift mitigation of security threats.
• Expertise with observability tools like OpenTelemetry (OTEL) for monitoring and instrumentation ensuring comprehensive visibility into system health and performance in Container Orchestration Frameworks.
• Demonstrated experience in working in data center environments; bonus if you have relevant experience on working in mission critical systems.
• Demonstrated ownership of the DevSecOps Mindset and demonstrated experiences of guiding the Software Development Teams in embracing the DevSecOps Mindset.
• Demonstrated experience in working in a multi-cultural and multi-disciplinary environment.
• Good communication skills in English.

Desirable Skills/Experience

If you have the following desirable skills and relevant experiences it would be an added advantage!

• Relevant certifications such as Certified Kubernetes Administrator (CKA) or Certified Kubernetes Security Specialist (CKSS).
• Familiarity with popular DevOps tools (e.g. Jenkins Git Terraform) to enhance our Kubernetes development pipeline.
• Experience with CI/CD tools and practices integrated with Kubernetes driving continuous improvement and deployment.
• Familiar with cloud-native deployment strategies to cloud service providers (e.g. Azure Cloud Amazon Cloud Google Cloud).
• Familiar with the main cloud service models: Software as a Service Platform as a Service and Infrastructure as a Service.

Essential / Desirable Traits

• Possess learning agility flexibility and pro-activity
• Comfortable with agile teamwork and user engagement

At Thales were committed to fostering a workplace where respect trust collaboration and passion drive everything we do. Here youll feel empowered to bring your best self thrive in a supportive culture and love the work you do. Join us and be part of a team reimagining technology to create solutions that truly make a difference for a safer greener and more inclusive world.