Jobs · Engineering · New Hampshire

Senior Security Automation Engineer (DevSecOps)

Analogic · Salem, NH · 3 wk ago
On-siteEngineeringFull-time

You’ll Be Building

  • Design and implement a modern security automation platform, including:
    • Compliance-as-Code (STIG, CIS, ISO 27001 controls enforced programmatically)
    • Immutable, hardened Linux images built through container workflows
    • CI/CD pipelines with embedded security gates (GitLab)
    • Automated vulnerability management pipelines (scan → triage → remediate → verify)
    • Infrastructure-as-Code for security tooling and scanning platforms

Why This Work Matters

  • Your code will secure CT-based screening systems deployed globally across:
    • Airports
    • Border control
    • Critical infrastructure
  • These systems operate in regulated, high-security environments where failures have real-world consequences.
  • You’re not just building pipelines—you’re protecting national infrastructure at scale.

What You’ll Do

  • Build and maintain Ansible-based hardening frameworks (DISA STIG, OpenSCAP)
  • Engineer secure CI/CD pipelines with enforced security gates
  • Create container-based OS images that pass compliance pre-deployment
  • Develop Terraform-managed security infrastructure (Tenable, OpenSearch, Grafana)
  • Automate vulnerability remediation pipelines
  • Replace manual audit prep with continuous compliance and auto-generated evidence
  • Map technical controls directly to ISO 27001 requirements

Tech You’ll Work With

  • Ansible
  • Terraform
  • GitLab CI/CD
  • Linux (RHEL/CentOS ecosystem)
  • Containers (Docker/Podman, image pipelines)
  • Vulnerability scanning (Tenable/Nessus/OpenVAS)
  • OpenSCAP, STIG, CIS benchmarks
  • OpenSearch / Grafana

What We’re Looking For

  • Experience in DevOps, SRE, or security engineering
  • Strong automation mindset—you eliminate manual processes
  • Hands-on with infrastructure-as-code and CI/CD pipelines
  • Comfortable working in Linux-heavy, production environments
  • Experience (or strong interest) in security automation and compliance engineering

What Makes This Different

  • Greenfield opportunity – build systems from scratch, not maintain legacy
  • Engineering-first security – automation over documentation
  • Real-world impact – security that protects global infrastructure
  • Cross-functional influence – partner with engineering, cybersecurity, and platform teams
  • Modern stack – CI/CD, containers, IaC, and compliance automation

Similar jobs