DevSecOps ENGINEERS-AEROSPACE AND DEFENSE:

DevSecOps ENGINEERS-AEROSPACE AND DEFENSE:

Bullisher is a data centric fintech Solution provider in the aerospace and defense industry for institutional level investors, looking to disrupt and revolutionise a $3 trillion dollar industry. We spearhead an industrial-leading Blackbox to facilitate and administer trade agreements pioneered by a vehicle, driven by our new generation benchmark delivering solutions through innovation with uncompromising agility.

JOB DESCRIPTION:

The oversight requires you to mitigate risk and improve resilience to plan and govern, deploy & test, release & deploy, operate & monitor specific requirements for ALM (Application lifecycle management). A team of six to incorporate security throughout the entire development process to meet the organizational goals. Our focus is specifically agile approach and hybrid approach. This will include a demonstration of Dimension RM, ALM, and Connect showing requirements generation and life cycle management with traceability through product delivery of ALM as part of our management, testing, security testing, deployment and monitoring of the applications and production.

Areas to cover will include:

• Requirements, test and defect management
• Release and sprint management
• Continuous integration (CI)
• Functional testing, performance testing and virtualization
• Production insights and assets sharing
• Test execution, user story

There will be a high-level review of classic system engineering artefact management, traceability and governance, controls and regulations in place that demand reporting-line procedures. Areas to cover will include:

• Capability, functional requirements
• Non-functional, performance requirements
• Security requirements, epics and user story

Focus on high level around ALM able to track those requirements, improve efficiency, with traceability, and automation of different aspects of the lifecycle. Implement high-level security, enforce different built-in workflows and processes around the engineering lifecycle and real-time insights. Support the integration capabilities with ALM.

Our systems requirements will be traditionally managed through a hierarchical framework, so the attributes can be tracked and associated with the requirements. Insert/Create a guidance rich text as a part of a standard structure document that can be included and supplemented. E.g., content of the requirement text or definition which can automatically track, when was it last modified, who created it, requirements to get a unique ID that tracks throughout its lifecycle.

Established a live hyper-link requirement to requirement traceability, architecture documents. The system requirements document (SRS) documents will include detailed functional requirements for the system on ‘what’ are the behaviors based on specified end-user use cases as well as non-functional requirements for example; GUI, quality & performance, Usability and system behavior requirements that directly or indirectly impact the system.

DevSecOps are expected to clearly understand the definitions and agree upon the ranking of the definitions used with any given requirement. SRS text will automatically be incorporated as part of a standard template. All the instantiation SRS templates of the project must be platform and database-independent applications. It should be possible to run it on any operating system, should support any database and should work on any web browser. We are a startup enhancing the formation of early stages of a product development project.

PHYSICAL DEMANDS: This position requires the ability to communicate and exchange information, utilize equipment necessary to perform the job.

ENVIRONMENT: This position will operate in the following areas of the organization regulatory engineering division: MULTIDOMAIN DEFENCE DOCK.

MULTIDOMAIN DEFENCE DOCK: Standard engineering lab environment.

Employees must be legally authorized to work in the UK. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is not available for this position.

QUALIFICATIONS, SKILLSET AND KEY REQUIREMENTS:

• 10+ years of extensive experience working in practical labs, real-world projects, and scenario-based exercises.
• Experience incorporating security into CI/CD pipelines, automating security checks, and identifying vulnerabilities in various environments.
• (Masters in computer science/Degree in System Architecture)/ Offensive Security Certified Professional (OSCP)/ Preferred
• Certified DevSecOps Professional (CDP)/Certified DevSecOps Engineer (CDE) is essential.
• Certified Information Security Manager (CISM)
• Information Systems Security Engineering Professional (ISSEP)
• Certified Ethical Hacker (CEH)
• Computer Hacking Forensics Investigator (CHFI)
• Certified Secure Software Lifecycle Professional (CSSLP) is essential.
• Certified Authorization Professional (CAP)
• Certified Network Defender (CND)
• Information Systems Security Architecture Professional (ISSAP)
• Health Care Information Security and Privacy Practitioner (HCISPP)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Security Leadership Certificate (GSLC)
• It's prerequisite to be certified one of the listed DoD 8570 Certifications.

INTERVIEW PROCESS:

• STAGE 1: COGNITIVE ABILITY TEST
• STAGE 2: COGNITIVE ASSESSMENT SCREENING: WITH A 30+ YEARS EXPERIENCE PSYCHOLOGIST:
• STAGE 3: PRE-SCREENING (verification checks & DV security clearance)
• STAGE 4: INTERVIEW WITH THE CEO, CTO & CHIEF ENGINEER