DevSecOps ENGINEERS-AEROSPACE AND DEFENSE

Bullisher is a data centric fintech solution provider in the aerospace and defense industry for institutional level investors, looking to disrupt and revolutionise a $3 trillion dollar industry. We spearhead an industrial-leading Blackbox to facilitate and administer trade agreements pioneered by a vehicle, driven by our new generation benchmark delivering solutions through innovation with uncompromising agility.

JOB DESCRIPTION: The oversight requires you to mitigate the risk and improve resilience to plan and govern, deploy & test, release & deploy, operate & monitor specific requirements for ALM (Application lifecycle management). A team of four to integrate security throughout the entire development process to meet the organizational goals. Our focus is specifically agile approach and hybrid approach. This will include a demonstration of Dimension RM, ALM, and Connect showing requirements generation and life cycle management with traceability through product delivery, of ALM as part of our management, testing, security testing, deployment and monitoring of the applications and production.

Areas to cover will include:

• Requirements, test and defect management
• Release and sprint management
• Continuous integration (CI)
• Functional testing
• Performance testing and virtualisation
• Production insights and assets sharing
• Test execution
• User story

There will be a high-level review of classic System Engineering Artefact Management, Traceability and Governance, controls and regulations in place that demands reporting-line procedures, that needs to be managed track and trace:

• Capability, functional requirements
• Non-functional, performance requirements
• Security requirements, epics and user story

So we have the ability in our solutions to be able to track from capability, epics, to functional requirements, and have that lifecycle traceability across a hybrid environment. Areas to focus will include:

• Capability requirements
• Requirements to other requirements
• Requirements to defects
• Requirements to test
• Requirements to code

GOVERNANCE: Implement and manage the entire system engineering lifecycle, built-in project reporting, dashboard, generate appropriate SRS reports, built-in health reports, graphs and live analysis to be able to very quickly see as changes are happening within the requirements management and the other areas within ALM and what the impact in these changes are. Focus on high level around ALM to track those requirements, improve efficiency, with traceability, and automation of different aspects of the lifecycle. Implement high-level security, enforce different built-in workflows and processes around the engineering lifecycle and real-time insights. Support the integration capabilities with ALM. Our systems requirements will be traditionally managed through a hierarchical framework, so the attributes can be tracked and associated with the requirements. Insert/build a guidance rich text as a part of a standard structure document that can be included and supplemented. E.g content of the requirement text or definition which can automatically track, when was it last modified, who created it, requirements to get a unique ID that tracks throughout its lifecycle. Established a live hyper-link requirement to requirement traceability, architecture documents.

The system requirements document (SRS) will include detailed functional requirements for the system on 'what' are the behaviors based on specified end-user use cases as well as non-functional requirements for example; GUI, quality & performance, usability and system behavior requirements that directly or indirectly impact the system. DevSecOps and adopters are expected to clearly understand the definitions and agree upon the ranking of the definitions used with any given requirement. SRS text will automatically be incorporated as part of a standard template. All the instantiation SRS templates of the project must be platform and database-independent applications. It should be possible to run it on any operating system, should support any database and should work on any web browser.

We are a startup enhancing the formation of early stages of a product development project.

PHYSICAL DEMANDS: This position requires the ability to communicate and exchange information, utilize equipment necessary to perform the job.

ENVIRONMENT: This position will operate in the following areas of the organization regulatory engineering division: MULTIDOMAIN DEFENCE DOCK: Standard engineering lab environment. Employees must be legally authorized to work in the UK. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is not available for this position.

QUALIFICATIONS, SKILLSET AND KEY REQUIREMENTS: 7-10 years of extensive experience working in practical labs, real-world projects, and scenario-based exercises. You'll work on integrating security into CI/CD pipelines, automating security checks, and identifying vulnerabilities in various environments. Masters in computer science, Offensive Security Certified (OSCP), Certified DevSecOps Professional (CDP), Professional, Certified Information Security Manager (CISM), Information Systems Security Engineering Professional (ISSEP), Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI), Certified Secure Software Lifecycle Professional (CSSLP) is essential. Certified Authorization Professional (CAP), Certified Network Defender (CND), Information Systems Security Architecture Professional (ISSAP), Health Care Information Security and Privacy Practitioner (HCISPP), GIAC Certified Intrusion Analyst (GCIA), GIAC Security Leadership Certificate (GSLC) It's a prerequisite to be certified on two of the listed DoD 8570 Certifications.

INTERVIEW PROCESS:

• STAGE 1: COGNITIVE ABILITY TEST
• STAGE 2: COGNITIVE ASSESSMENT SCREENING: WITH A 30yrs+ EXPERIENCE PSYCHOLOGIST
• STAGE 3: PRE-SCREENING (verification checks & DV security clearance)
• STAGE 4: INTERVIEW WITH THE: CEO, CTO & CHIEF ENGINEER