SecDevOps Engineer


Apply Now

Overview


Advance cybersecurity across ArcGIS, a suite of products delivering state-of-the-art mapping and analytics capability to thousands of customers and millions of users worldwide.

Esri’s software security and privacy team fosters building security into the ArcGIS platform throughout the software development lifecycle. As a SecDevOps engineer, you will be responsible for researching and automating security tool integration across the vast product line. If you are passionate about leading-edge geospatial and security technologies, enjoy writing code and scripts to automate everything, and can communicate effectively via writing and presentations, this is the place to be!

Responsibilities


  • Work closely with development teams to improve security integration workflows around build, test, and deployment of applications
  • Research, build, and maintain security monitoring, scanning, alerting, and trending tools
  • Implement automation, effective monitoring, and infrastructure-as-code
  • Deploy and maintain CI/CD pipelines across multiple environments
  • Sustain and improve the process of knowledge sharing across teams
  • Lead code review efforts
  • Iterate on best practices to increase the quality and velocity of integrating security throughout the development lifecycle
  • Research/write/advance common security components for the ArcGIS platform

Requirements


  • Relevant development/scripting experience in several of these languages: Java, JavaScript, C#, PowerShell, Bash, Python, HTML, YAML
  • Understanding of DevOps, scripting, and associated build/automation systems such as Jenkins
  • Familiarity with OWASP, SANS 25, CWE, and CVSS/CVEs
  • Extensive experience with Azure and/or AWS secure operations
  • Deep understanding of web, http, networking, security, scaling, and cloud native architecture
  • Bachelor’s or master’s in cybersecurity, computer science, information systems, mathematics, or a related field, depending on position level

Recommended Qualifications


  • 2+ years of professional experience as secure DevOps or back-end systems engineer
  • Experience with a CI/CD pipeline tool such as Jenkins
  • Knowledge of cryptography
  • Knowledge of Git
  • Experience with containers (Docker, Kubernetes) and associated security systems
  • Familiarity with pipeline integration of dynamic, component, and static analysis scans
  • Familiarity with security and privacy compliance frameworks such as GDPR, HIPAA, NIST, FedRAMP and ISO 27000
  • Azure, AWS cloud certifications and/or security certifications

About Esri


Our passion for improving quality of life through geography is at the heart of everything we do. Esri’s geographic information system (GIS) technology inspires and enables governments, universities, and businesses worldwide to save money, lives, and our environment through a deeper understanding of the changing world around them.

 

Carefully managed growth and zero debt give Esri stability that is uncommon in today's volatile business world. Privately held, we offer exceptional benefits, competitive salaries, 401(k) and profit-sharing programs, opportunities for personal and professional growth, and much more.

 

Esri is an equal opportunity employer (EOE) and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

 

If you need a reasonable accommodation for any part of the employment process, please email humanresources@esri.com and let us know the nature of your request and your contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this e-mail address.

Apply Now