Senior DevSecOps Engineer

SeniorDevSecOpsEngineer

Title SeniorDevSecOpsEngineer

Department R&D

Location Niwot CO(Hybrid)

ReportsTo

About Us

Established in 1972 Particle Measuring Systems is aglobal leaderformicro-contamination monitoringequipment improving the performance of clean manufactures in thesemiconductorandpharmaceuticalindustries.Werea growing technology company in Niwot Colorado the heart of the Rocky Mountains.We offer an exceptional and rewarding work environment ina great placeto live.Our employees enjoy challenging projects in the development and manufacture of light scattering particle counters and diverse technologies and applications.

Your Impact

We are looking for aSeniorDevSecOpsEngineerwho will contribute to the success of theR&DTeam applying theirexpertiseinDevSecOpsto support the achievement of team and company goals and deliver innovative reliable solutions.In this role the successful candidate will collaborate effectively with colleagues and cross-functional teamsdemonstratestrong problem-solving and decision-making skills andmaintaina commitment to professional excellencequalityand continuous improvement.

The Role(manager input)

Summary

Job Responsibilities

• Lead aDevSecOpsteam that builds and manages secure cloud environments and CI/CD pipelines integrating automated security testing vulnerabilitymanagementand compliance controls to support efficient and secure firmware and software delivery.

• Define and implement security and compliance practices including vulnerability scanning dependency analysis SBOM management threat modeling and secure coding standards withSAST DAST SCA and SBOMtools.

• Collaborate with development teams to improve workflows release strategies automated testingenvironmentsand integrate security practices into the development process.

• Automate the provisioning and configuration of servers containers and other infrastructure components usingIaCand configuration management tools.

• Administer andmaintainbinary repositories.

• Implement andmaintainmonitoring and logging systems to ensure the health and performance of our CI/CD pipeline infrastructure.

• Lead a team through the vulnerability management lifecycle; investigating and remediating security vulnerabilities and incidents in CI/CD pipelines and product releases.

• Troubleshoot and resolve issues related to development automatedtesting andrelease and security incidents ensuring tight feedback loops and maximum value throughout.

• Collaborate and communicate with development teams to capture performance metricsidentifybottlenecks and implement improvement strategies.

• Work with a cross-functional team to ensure product releases meet internal and regulatory cybersecurity standards.

• Stay up to date with emerging technologies industry trends security frameworks and software supply chain security best practices.

• Recommend andprocurenew DevOps and cybersecurity related toolswork with legal to approvetools track license agreements communicate with vendors planupgradesand negotiate costs.

• Activelyparticipatein building andmaintaininga strongDevSecOpsteam byestablishingtechnical interview criteria and evaluating candidates through interviews.

• Mentor and provide guidance to members of theDevSecOpsteamfirmwareand software teams fostering a culture of knowledge sharing secure developmentpracticesand continuous learning/improvement.

• Continuously evaluate processes for improvements in efficiency quality and safety.

• This job description is not intended to beall-inclusive.Responsibilities may evolve over time and other related duties may be assigned to meet the ongoing needs of the company.

Required Qualifications

• Bachelor of Science in Computer Science or a related Engineering field.

• 2 years of experience as aDevSecOpsEngineer or security-focused DevOps Engineer and 5 total years of experience in engineering with a strong understanding of software development practices and methodologies.

• 2 years of experience as a technical lead withinDevSecOpsor other Engineering practices.

• Development experience in either embedded firmware or software.

• Experience integrating SAST DAST SCA and SBOM tools into CI/CD pipelines.

• Hands-on experience managing binary repositories.

• Proficiencywith AWS or other major cloud platforms.

• ProficiencyinIaCand configuration managementtools like.

• Strong scripting skills in languages like Bash Python or PowerShell.

• Experience usingbuildtools such asCMake Make or custom toolchains.

• Experience with containerization technologies such as Docker.

• Working knowledge of CI/CD tools like Jenkins Bitbucket Pipelines and GitHub Actions.

• Familiarity with monitoring and logging tools such as Prometheus and Grafana.

• Cyber Security knowledge and experience; solidunderstanding of cybersecurity principles vulnerability management andDevSecOpspractices.

• Experience implementing shift-left security across the product development lifecycle.

• Excellent problem-solving and troubleshooting skills with the ability to analyze complex systems andidentifyroot causes.

• Strong communicationand collaboration skills capable of working effectively in cross-functional teams.

• Experience interviewing engineering candidates.

Preferred Qualifications

• Understanding ofAgile DevOps andDevSecOpsmethodologies with experience embedding security into software development processes.

• Expertisein Git and the Atlassian suite of software development tools including Bitbucket pipelines.

• Experience integrating security scanning tools into CI/CD pipelines (SAST DAST).

• Familiarity with automated software composition analysis (SCA) and open-source compliance practices.

• Familiarity with DORA metrics.

• Cyber Security certifications such as CISSP CCSP Security AWS Certified Security - Specialty.

• Experience with SBOM standards such as SPDX andCycloneDX.

• Familiar with industry standards such as EN 18037 and IEC 62443.

• Knowledge and experience with techniques required byEUCyber Resilience Act particularly with respect to vulnerability management.

• Expertisein performing threat modeling and risk assessment.

• Experience working alongside cybersecurity teams to ensure secure development practices and incident response readiness.

• Previousexperience in vendor management.

• Experience inmulti-disciplinary engineering environment.

Work Environment & Physical Requirements

• This role primarilyoperatesin an office/lab/manufacturing environment.

• Mustbe able to sit stand and use a computer for extended periods of time.

• This is a hybrid position in-office approximately 50% of the time.

• Occasional lifting of up to20lbs.may be.

• Reasonable accommodation may bemadeto enable individuals with disabilities to perform the essential functions of this role.

Compensation & Benefits

• Competitive base salary range:$110000 - $158000

• Our compensation philosophy:we offer competitive pay based on market data including local national and industry benchmarks.For new hires offers aregenerally withinthe established min- to mid-point of the range for the role with flexibility to recognize experience skills and education.Our approach ensures fair pay internally whileremainingcompetitive externally and allows room for growth.

• Comprehensive benefits package:

• Health coverage: medical dental visionfsa onsite clinic (CO employees) life insurance

• 401(k) retirement plan with company match

• Vacation holiday and leave policies

• Tuition reimbursement Employee recognition programs Employeeassistanceprograms

Particle Measuring Systemsisproud to be an Equal Opportunity Employer and are committed to building an inclusive and supportive workplace where everyone can thrive.