We have an outstanding Contract to Hire position for a DevSecOps Engineer to join a leading Company located in the New Castle, DE surrounding area.
We are looking for an experienced DevSecOps Engineer to join our Research and Development organization and contribute to the continued success of our Thermal Analysis and Rheology products.
Job Responsibilities:  Support development and management of Yocto-based embedded Linux build systems.Customize Linux distributions using Yocto tools and recipes.Troubleshoot build failures and implement timely fixes.Research and integrate new technologies to improve build infrastructure and automation workflows.Design and implement secure automation for development, test, and production environments.Manage and maintain infrastructure security and monitoring systems.Maintain detailed documentation of build processes, security protocols, and automation workflows.Provide guidance on cloud security best practices (IAM, network segmentation, encryption) and on-premises system hardening.Work closely with software QA and product security teams to ensure compliance.Develop and maintain CI/CD pipelines across multiple environments (GitHub Actions, Azure Pipelines, Artifactory, etc.)Employ version control (Git) best practices for embedded environments.Collaborate with cross-functional teams to improve engineering tools, processes, and data security.Mentor colleagues on security and automation best practices.
Basic Hiring CriteriaBachelor's Degree preferred, or equivalent combination of education, training, and experience.5 years of relevant experience building, designing, and implementing CI/CD pipelines for Linux-based embedded software development projects.Proficient with scripting languages such as Python, bitbake, or Bash.Strong understanding of cloud security best practices and IAM management.Strong communication and collaboration skills, with experience working in cross-functional teams.Proficient with build tools and pipelines such as GitHub Actions, Azure Pipelines, Artifactory, etc.Experience with logging, performance monitoring, and performance tuning tools.Experience with container runtimes and orchestration tools such as Docker or Kubernetes.
Desired Qualifications:Knowledge of CI/CD pipelines and infrastructure as code.Experience with performance monitoring and analytics tools.Experience generating SBOM (Software Bill of Materials) through build pipelines.Familiarity with cloud service providers (AWS, Azure, Google Cloud) and their security measures.Ability to work collaboratively in a fast-paced environment.Familiarity with infrastructure as code.Familiarity with monitoring and logging tools such as Prometheus, Grafana, Loki, or Datadog.Understanding of embedded systems architecture and development.Familiarity with tools like Ansible and Terraform for automation and infrastructure management.Familiarity with Wix or InstallShield is a plus.Cloud and Security Certification is a plus.