Job Description

Overview:

As a DevSecOps Engineer, you will design, implement, and maintain secure, automated infrastructure pipelines for enterprise software delivery. This role combines expertise in

infrastructure-as-code

,

containerization

, and

security compliance

to ensure robust, scalable, and compliant deployments across hybrid environments.

Careers Privacy StatementKeysight is an Equal Opportunity Employer.
Responsibilities:

Infrastructure Automation

+ Develop and maintain Packer templates for creating hardened VM and container images, ensuring compliance with internal security standards.
+ Collaborate with IT and product teams to streamline image pre-configuration for on-prem and cloud deployments.

Containerization & Orchestration

+ Build and manage multi-container environments using Docker Compose, Podman, and Kubernetes for application deployment.
+ Evaluate and implement alternatives for container orchestration in secure or air-gapped environments.
+ Create and maintain VMs both manually and via (CI/CD) provisioning.

Security Integration

+ Perform Black Duck scans and vulnerability assessments on source code, dependencies, and container images to meet SSDF and compliance requirements.
+ Address identified security issues by upgrading components and mitigating risks in CI/CD pipelines.
+ Collaborate with product security teams to enforce best practices for open-source compliance and license management.

Continuous Improvement

+ Integrate security scanning tools (e.g., Black Duck Detect, VMT) into Jenkins and other CI/CD platforms.
+ Monitor and optimize performance of security tools and container platforms, ensuring minimal downtime during maintenance windows.

Documentation

+ Create instructions for both internal teams and customers to deploy, maintain, and upgrade images.
+ Include documentation in the CI/CD pipeline.


Qualifications:
Strong experience with Packer, Docker, Docker Compose, and container orchestration tools (Kubernetes, Podman). Experience programming with Python, bash, etc. Proficiency in CI/CD pipelines and automation frameworks (Jenkins, GitLab CI). Hands-on experience with security scanning tools (Black Duck, SCA solutions) and remediation workflows. Knowledge of Linux administration and secure image creation for Debian/RHEL/Alpine environments. Familiarity with compliance frameworks (SSDF, legal open-source reviews). Strong collaboration skills to work with cross-functional teams (IT, Product Security, R&D).


Preferred QualificationsExperience deploying solutions in air-gapped or high-security environments. Understanding of cloud-native security practices and container runtime hardening. Full stack development experience.


Note: Any use of AI assistance during interviews will result in immediate disqualification for this position.

Careers Privacy StatementKeysight is an Equal Opportunity Employer.