DevSecOps Engineer

Company Description

iMETALX, Inc. is dedicated to creating a future where space is accessible and sustainable for all. We specialize in Space Domain Awareness (SDA) and In-Space Servicing, Assembly, and Manufacturing (ISAM) solutions tailored for both government and commercial sectors. Our mission encompasses spacecraft autonomy, robust engineering solutions, and the deployment of software on real systems.

As a dynamic and agile engineering team, we are building advanced cross-domain autonomy software, utilizing cutting-edge technology such as computer vision, machine learning, and enhanced simulation practices. This role provides an exciting opportunity to contribute to the secure infrastructure that supports vital systems ranging from R&D prototypes to operational deployments relevant to national security and space missions.

Role Overview

The DevSecOps Engineer position at iMETALX is integral to establishing and refining the security and deployment frameworks within our software development organization.

You will be responsible for designing and managing secure CI/CD pipelines, fortifying development and build systems, and implementing infrastructure as code. Your goal is to ensure that our engineering practices align with essential security protocols while promoting speed and efficiency.

This role is not a standard compliance-focused position; we value a professional who can balance security, reliability, and rapid deployment, helping our team transition from fast-paced innovation to a more structured yet agile development environment.

Key Responsibilities

Secure CI/CD + Developer Enablement

• Create and oversee CI/CD pipelines with integrated security measures (SAST/DAST, dependency and container scanning).
• Establish secure build processes involving artifact signing, SBOM generation, vulnerability gating, and reproducible builds.
• Enhance developer experience through rapid feedback mechanisms and self-service tools.

Secure Infrastructure + Environments

• Design and manage cloud-based and on-premise environments, employing Infrastructure as Code (with a preference for Terraform).
• Develop secure baseline environments for development, staging, and production, prioritizing least-privilege access and robust identity safeguards.
• Facilitate system deployments across constrained environments (e.g., air-gapped networks, restricted endpoints).

Compliance + ATO/SSP Readiness

• Enforce engineering controls and evidence collection that aligns with:
• NIST 800-53 / RMF
• CUI handling protocols
• Configuration baselines and ongoing monitoring procedures

• Direct the technical implementation for audit preparedness, encompassing logging, access management, traceability, and configuration drift oversight.

Container Security & Kubernetes Administration

• Manage and secure container workflows related to:
• Base image hardening
• Admission controls
• Secrets management practices
• Runtime monitoring and observability

• Maintain Docker and orchestrating tools, with Kubernetes being an advantageous skill.

Security Operations & Incident Response Support

• Advance observability through centralized logging, metrics, alerting, and security telemetry.
• Collaborate in defining and executing procedures around incident response, vulnerability management, and patching cycles.

Requirements:
Required Qualifications

• Active U.S. TS Security Clearance
• U.S. citizenship is required due to ITAR export-control restrictions.
• 4+ years of experience in a DevOps/DevSecOps/Platform Engineer or related role, with a focus on security practices.
• Expertise with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI) and their integration with security practices.
• Experience with Linux Environments, containerization, and scripting/automation (Python, Bash)
• Knowledge of security frameworks and standards (e.g., NIST, ISO 27001, OWASP).
• Experience with vulnerability assessments, penetration testing, and remediation techniques.
• Ability to work collaboratively in a fast-paced environment and quickly adapt to changing requirements.

Preferred Qualifications

• Experience with agile methodologies and project management tools (e.g., JIRA, Trello).
• Familiarity with networking concepts and security measures in cloud environments.
• Certifications such as CISSP, CISM, or AWS Certified Security Specialty are a plus.

Benefits:
• Competitive Salary
• Health Insurance/Dental
• Paid Time Off
• 401k
• Performance Bonus
• Equity