Missile Embedded Devsecops Lead Level 4 (aht)

Northrop Grumman Northrop Grumman · Aerospace · Los Angeles, CA +1 · Software

Lead DevSecOps engineer for missile programs, responsible for designing, implementing, and owning end-to-end CI/CD pipelines for embedded software development. Focus on security, automation, testing, and deployment practices in a safety-critical, real-time environment.

What you'd actually do

  1. Design and own end‑to‑end CI/CD pipelines for missile program codebases, selecting and integrating tools such as Jenkins, Nexus, SonarQube, and the Atlassian (Jira, Bitbucket, and Confluence) suite.
  2. Develop and maintain pipeline automation scripts and build configurations (CMake, Visual Studio, custom build scripts) to support continuous integration, testing, and delivery of embedded software.
  3. Architect secure artifact repositories and version‑control strategies, ensuring traceability, reproducibility, and compliance with DoD security requirements.
  4. Implement static analysis, code quality gates, and vulnerability scanning within the pipeline using SonarQube and other tooling to enforce secure coding practices across C++, Python, and VxWorks projects.
  5. Collaborate with embedded software engineers to tailor build and test processes for real‑time, safety‑critical applications, handling cross‑compilation, hardware‑in‑the‑loop testing, and simulation environments.

Skills

Required

  • BS in Electrical or Computer Engineering or related field with 8 years of embedded software/hardware development, preferably on safety‑critical or defense platform; or MS with 6 years of the same experience.
  • Experience as a technical lead collaborating with cross-functional teams
  • DevSecOps experience creating and maintaining CI/CD pipelines with the ability to identify needs for automation, design and implementation of CI/CD solutions
  • Experience with GIT and Agile development, inclusive of generating, analyzing, and reporting on Agile and development metrics.
  • Embedded software development experience with micro‑controllers, DSPs, FPGAs, and Real‑Time Operating Systems (RTOS) such as VxWorks, FreeRTOS, or QNX in Windows or Linux environments
  • Current US Government Secret security clearance with ability to get cleared for SAP

Nice to have

  • Proficiency in one or more of the following: C/C++/Python, Flight Software Development, Software Factory.
  • Experience with full software development life-cycle
  • Experience with tools like GitLab, Atlassian (Jira, Bitbucket and/or Jenkins), including CI/CD tools (SonarCube, Fortify, VectorCast)
  • Cloud Technologies (AWS, Azure) with Containers and Orchestration (Podman, Kubernetes)
  • Experience with simulators, STE development
  • CISSP, CISM, or Security+ Certification
  • Demonstrated ability to implement process improvements, streamline activities, and develop efficiencies
  • Excellent communication and organizational skills; strong interpersonal and analytic skills

What the JD emphasized

  • DoD security requirements
  • real-time
  • safety-critical