About the role

AI summarised

Thales is seeking a DevSecOps Engineer to join their Air Traffic Management Systems team. The role involves building CI/CD pipelines, managing cloud and on-premises infrastructure, integrating security practices, and coaching agile teams. The ideal candidate has strong expertise in Linux, containerization, Kubernetes, and observability tools.

Aerospace & DefenseFull-timeGeneral

Key Responsibilities

Build and maintain CI/CD pipelines that support Agile teams and ARTs.
Provision and manage environments (development, test, staging, production).
Use infrastructure as Code (IaC) tools (i.e., Terraform, Helmfile, Ansible, Kubernetes Manifests) to ensure reproducibility and compliance.
Ensure high availability and resilience in cloud and on-prem environments (e.g., zero-downtime deployment, blue/green and canary release strategies).
Manage the automation and toolchain integration for code quality, security scanning, release management and monitoring; automate repetitive tasks to improve flow efficiency across the value stream, ensure the toolchain aligns with the Lean-Agile principles.
Work closely with System Architects, Release Train Engineers (RTEs) and agile teams to align on delivery practices.
Provide DevOps coaching to teams so they adopt the right practices for version control, branching strategies, and automated testing.
Support Program Increment (PI) planning by ensuring environments and pipelines are ready.
Develop security practices (e.g., Secrets Management) into the software delivery CI pipelines to ensure the artefacts are of premium quality level (shift-left security).
Automate compliance checks and enforce policies (e.g., code signing, container scanning).
Develop systems observability practices (e.g., monitoring, logs, traces) to define and track metrics like deployment frequency, lead time for changes, change failure rate, and MTTR.
Collaborate with InfoSec and Compliance teams to run regular security audits, risk assessments and data assessments.

Requirements

Bachelor's in Computer Science or Information Technology
Recognized Engineering degree
Strong expertise in Linux Operating System (i.e., Linux Process Sub-systems, Linux FileSystem)
Strong expertise in Linux shell scripting (i.e., bash scripting)
Strong expertise in designing and deploying Continuous Integration Pipelines for Software Development Teams
Strong expertise in Secrets Management and Configuration Management of subsystems in a Container Orchestration Framework, such as Kubernetes.
Strong expertise in designing, deploying & securing OCI containerized workloads (e.g., Docker, Kaniko) in Container Orchestration Frameworks (e.g., Kubernetes) running on-top of on-premises infrastructure and cloud infrastructure.
Strong expertise in designing and implementing pro-active monitoring of production grade environments, incident response and allows swift mitigation of security threats.
Expertise with observability tools like OpenTelemetry (OTEL) for monitoring and instrumentation, ensuring comprehensive visibility into system health and performance in Container Orchestration Frameworks.
Demonstrated experience in working in data center environments; bonus if you have relevant experience on working in mission critical systems.
Demonstrated ownership of the DevSecOps Mindset and demonstrated experiences of guiding the Software Development Teams in embracing the DevSecOps Mindset.
Demonstrated experience in working in a multi-cultural and multi-disciplinary environment.
Possess learning agility, flexibility and pro-activity
Comfortable with agile teamwork and user engagement