Note: The level and job title extended will be determined based on individual qualifications, experience, and relevant skill sets that will be evaluated during the interview process.
Company Summary
At
Safran Passenger Innovations, we make flying fun by focusing on maximizing the Passenger Experience. As an innovative In-Flight Entertainment and Connectivity (IFEC) company we design, engineer, manufacture, sell and support world-class In-Flight Entertainment and Connectivity solutions. Our products are constantly evolving, solving complex media distribution, playback, and networking problems in a secure and demanding on-wing environment. Safran IFEC products are utilized by many of the world's premier air carriers. Step aboard and help us by creating the best in-flight experiences for today and beyond!
Job Summary
As a
DevSecOps Software Engineer on the Software Developmentteam, you will engage with an experienced cross-disciplinary staff to support design and implementation of innovative In-Flight Entertainment (IFE) products applying state of the art DevSecOps principals and technologies to enhance and modernize all aspects of our CI/CD platform, including build and deployment of both on-wing and off-wing Compute, Networking and Storage components of our software. Working closely with inter-disciplinary teams you will participate in architecture, design, development, test, and integration phases of software features for the RAVE IFEC systems and products using a hybrid development and deployment methodologies. You must be a self-starter, responsive, flexible, and able to succeed within an open, collaborative peer environment.
Duties and Responsibilities:
- Define and implement governance plan, design, develop and improve CI/CD processes and tooling to support building of complex distributed systems in a low power, low latency, heat conscious environment
- Troubleshoot, triage, debug, and resolve build and deployment problems
- Provide guidance, mentoring, training, and support across product development and the broader IFE business with respect to DevSecOps best practices
Requirements
- 5+ years of proven experience governance planning, architecting/designing, implementing and deploying CI/CD pipelines using various tools like Ansible, Puppet, Jenkins, Terraform etc. and AWS cloud based technologies
- Proven experience managing source code / artifact repositories like SVN, Bitbucket, Artifactory, AWS ECR etc
- Proven experience integrating CI/CD pipeline with source code and package library analysis/scanning tools like SonarCube, Mend.io, Snyk, Coverity etc
- Proven experience setting up and managing ticketing and collaborative tooling like JIRA and Confluence
- Experience with Infrastructure as Code and infrastructure testing strategies
- Experience with fully automating CI/CD pipelines end-to-end, from code commits to production targeted for both cloud and resource constrained embedded devices
- Experience with containerization technologies like Kubernetes, Docker, AWS ELK, AWS ECS and their use within DevSecOps
- Experience design and implementing CI/CD pipelines for C, C++, C#, nodejs based applications for ARM and x86 processors
- Experience with various security/cryptography concepts such as PKI, SSL and TLS with respect to DevSecOps process targeted for Cloud and embedded devices
- Strong scripting skills, including shell scripts, Perl, Python, Groovy, Helm, etc;
- Experience in installing, configuring, and troubleshooting UNIX/Linux/Windows based environments hosted both in cloud and on-prem
- Understanding of Platform as a Service (PaaS) concepts and how to construct compute platforms from physical hardware all the way up the stack. This includes the ability to assess/evaluate and utilize primitives in a constrained environment
- Skilled at designing high availability platforms with quick recovery objectives
- Understanding of Linux kernel and options to create custom Linux distributions leveraging Yocto
- Familiarity with Amazon AWS Policy, Configuration, and Security Management tools
- Experience with security engineering concepts and practices including system and network security, authentication, protocols, cryptography, DB and application security in regulated environments (PCI-DSS, PII, GDPR, and CCPA Standards and Policies)
- Experience with formal Engineering Requirements documentation and processes
Desired Experience
- Understanding of embedded system software architecture and constraints particularly with ARM/x86 processors
- Cellular modem/firmware knowledge
- Adept at implementing internal tools to support development and troubleshooting for the entire DevSecOps stack
- Understanding of Video/Media content, playback, delivery, and streaming including DRM as well as understanding distributed file sharing concepts like BitTorrent
Experiences with any of the following languages, technologies and/or techniques would be advantageous:
- Low level kernel/driver knowledge of Linux 4.x and 5.x
- Python, Qt/QML and GUI development
- MQTT, IPC, RPC, sockets and/or audio/video players
- Highly available, fault-tolerant, distributed, or clustered systems development
- Audio/Video (A/V) device drivers, A/V kernel modules and/or A/V libraries
- 4K Video and DRM understanding
- ARINC 429 (data transfer) and RS-485/422
- Understanding of bus design: I2C, PCIe, SPI, MDIO, CAN, etc
- Windows using C/C++/C#, .Net, web programming, JavaScript, ASP, SQL, Node, Go and functional compute like AWS Lambda
- Mobile application communications development and loosely coupled designs
- Familiarity with micro-service architecture
- Refactoring/rearchitecting monolithic solutions into distributed microservices, containerized or serverless with heavy API design and implementation strategies
Benefits
The starting pay range for this position is $112,000 - $197,000, however, base pay and title offered may vary depending on skills, experience, job-related knowledge and location.