Principal DevSecOps Engineer

📋 Description

• • As a Principal DevSecOps Engineer at Raft, you will be instrumental in shaping and executing the development and operational lifecycle of cutting-edge clusters and applications. Your primary focus will be on establishing and maintaining the highest standards of security, efficiency, and reliability for our real-time data platform, which is being developed for the Department of Defense (DoD). This platform is designed to significantly enhance operator awareness of critical events by aggregating real-time data from diverse sensors and presenting it through an intuitive mission planning and execution UI.
• • You will play a pivotal role in architecting, developing, and implementing robust end-to-end solutions that span the entire application and cluster lifecycle. This includes hands-on involvement in setting up and managing infrastructure as code, automating deployment processes, and ensuring the security posture of our systems.
• • A core aspect of your role will involve collaborating closely with a team of accomplished engineers and stakeholders to deliver a high-impact data platform. You will be expected to contribute your expertise to the design and implementation of distributed systems, leveraging key technologies such as Kafka, Kafka Streams, Pinot, Java, Scala, and Kubernetes.
• • You will be responsible for designing, building, and maintaining scalable and resilient CI/CD pipelines that enable rapid and secure software delivery. This includes implementing GitOps principles to streamline software deployment and management, ensuring that changes are auditable, version-controlled, and can be easily rolled back if necessary.
• • Your expertise will be crucial in provisioning and managing production Kubernetes clusters, both in cloud environments (AWS) and on-premises. This involves ensuring cluster compliance with security policies, performance best practices, and operational readiness.
• • You will be deeply involved in operating stateful and data-intensive services within orchestrated environments. This requires a strong understanding of managing databases, streaming platforms, and other critical data infrastructure components to ensure high availability and data integrity.
• • You will contribute to the architectural design and implementation of data aggregation and processing pipelines, particularly those involving streaming technologies like Kafka, Pinot, or Flink. This includes optimizing data flow, ensuring low latency, and managing data quality.
• • You will be responsible for developing and maintaining infrastructure as code (IaC) using tools such as Terraform or Ansible, enabling repeatable and automated infrastructure provisioning and management.
• • You will implement and manage robust monitoring and logging solutions for Kubernetes environments, utilizing tools like Prometheus, Grafana, Fluentbit, Kibana, and Loki to ensure system health, performance, and rapid issue detection.
• • You will collaborate with development teams to integrate security best practices throughout the software development lifecycle (SDLC), fostering a DevSecOps culture. This includes implementing security scanning tools, vulnerability management, and access control mechanisms.
• • You will leverage your deep understanding of Kubernetes networking technologies (e.g., Calico, Cilium) and related concepts to design and implement secure and efficient network configurations for our clusters.
• • You will be involved in software packaging, build processes, and delivery approaches for distributed applications, ensuring consistency and reliability across different environments.
• • You will contribute to the development and maintenance of custom Helm Charts for deploying and managing applications on Kubernetes, ensuring efficient and standardized deployments.
• • You will actively participate in code reviews, architectural discussions, and knowledge sharing sessions, mentoring junior engineers and promoting best practices within the team.
• • You will work closely with clients to understand their requirements and translate them into technical solutions, providing expert guidance on DevSecOps strategies and implementations.
• • You will be responsible for ensuring that all deployed solutions meet stringent security requirements, including compliance with relevant government and industry standards.
• • Your role will involve staying abreast of the latest trends and technologies in DevSecOps, cloud-native computing, and data engineering, and applying this knowledge to continuously improve our platform and processes.
• • You will be a key contributor to Raft's mission of empowering U.S. military and government agencies with cutting-edge AI/ML and data solutions, directly impacting national security and operational effectiveness.