Principal DevSecOps Engineer

About the job

Revvity is a manufacturer and provider of end-to-end innovative solutions designed to help scientists, researchers, and clinicians solve the world’s greatest health challenges. We pair the enthusiasm of an industry disruptor with the experience of a longtime leader. To strengthen our international and diverse R&D team, we are searching for Senior DevSecOps Engineer, who will contribute to the continuous improvement of R&D environment and infrastructure.

You will:

• Monitor and identify performance bottlenecks and security issues in R&D infrastructure and in cooperation with Revvity DevSecOps team implement business efficient solutions.
• In cooperation with IT department, global CloudOps and DevSecOps teams define and implement efficient R&D automation strategies for software development and testing processes.
• In cooperation with R&D engineering team design and implement CI/CD pipelines enabling high performance and automation of product development and release cycles.
• Implement and continuously improve software build systems, software packaging and software deployment including development of installation software.
• Contribute to the design and development of configuration and package management system.
• Establish and implement the best SecOps practices as well as their full automation across R&D software projects.
• Contribute to the design and implementation of MLOps and DataOps to automate and simplify data engineering and AI development.

Qualification requirements:

• MS in STEM (science, technology, engineering, mathematics) or equivalent.
• 10+ years of continuous experience in DevSecOps roles.
• Experience with cloud security and cloud platforms; AWS is a must, Azure and GCP nice to have.
• Proficiency in scripting and automation (Python, PowerShell, Bash, etc.).
• Knowledge of security compliance frameworks (e.g., ISO 27001, NIST, GDPR).
• Experience with SAST, SCA and DAST security tools (ideally Checkmarx or similar).
• Experience with automation tools, CI/CD pipelines, and containerization technologies.
• Expertise with version control and build systems (Git, GitHub, MSBuild, make, CMake).
• Proven track record of release process automation, software packaging (Artifactory, Conan, WiX) and deployment automation for Windows and Linux systems.
• Experience with and knowledge of software installers, packaging and package management systems.
• Expert-level knowledge of Ansible (or similar) for Infrastructure as Code.
• Experience with monitoring and reporting systems (Prometheus, Grafana, SonarQube and similar).
• Strong communication, negotiation, and presentation skills.