Software Engineer, DevSecOps

About the role

Helsing develops artificial intelligence-enabled capabilities to protect and defend democracies. We build Altra, an AI-powered drone software platform, and HX-2, our autonomous drone. We are growing our US operations, cultivating an ambitious and committed team of mission-driven professionals to apply their skills to solve challenging problems. You will join the Platform Engineering team as a security-focused engineer responsible for embedding security into every layer of our developer platform and software delivery pipeline. You will own the security posture of our development environment - ensuring CMMC Level 2 compliance, hardening our software supply chain, and implementing the controls required for product teams to achieve ATO against NIST and other cybersecurity frameworks. You will work closely with platform and product engineers to build secure CI/CD pipelines, enforce policy-as-code, and maintain the shared infrastructure that all teams depend on. This role combines hands-on engineering with deep security expertise: you are not just auditing compliance, you are building the systems that make compliance automatic. The day-to-day Deploying, updating, and securing Kubernetes workloads through ArgoCD and GitOps workflows Building and maintaining secure CI/CD pipelines that enforce policy, scan for vulnerabilities, and produce auditable build artifacts Maintaining and hardening shared services (GitLab, Artifactory, container registries) that the entire organization depends on Implementing and enforcing security controls aligned with CMMC L2, NIST 800-171, and other frameworks required for ATO Securing the software supply chain: image signing, SBOM generation, dependency scanning, and provenance tracking Conducting threat modeling to surface architectural risks before they become incidents Detecting, investigating, and responding to security incidents across infrastructure and applications Working with product teams to ensure their workloads meet security and compliance requirements before and after deployment Supporting the secure hosting of ML/AI workloads, including model training environments and sensitive data handling You should apply if you Have 5+ years of experience in DevSecOps, security engineering, or infrastructure engineering with a security focus Have a Bachelor's degree in Computer Science, Engineering, Cybersecurity, or a related field Have deep experience with Kubernetes - deployment, networking, RBAC, pod and cluster security, and operational troubleshooting Are proficient with ArgoCD or similar GitOps tooling for managing Kubernetes workloads at scale Have strong experience writing and maintaining Helm charts Are proficient in Python and Bash, with experience automating security and compliance workflows Understand software supply chain security, including container image hardening, FIPS-validated cryptography, vulnerability scanning, SBOM, and artifact signing Have hands-on experience implementing security controls from frameworks like NIST 800-171, NIST 800-53, or CMMC Are comfortable with CI/CD pipeline design, particularly building in security gates, policy-as-code, and automated compliance checks Have working knowledge of AWS and can collaborate effectively on infrastructure decisions Are a U.S. citizen eligible to obtain a security clearance

Requirements

• Experience with Go or other systems programming languages
• Experience shepherding systems through an ATO process
• Familiarity with DISA STIGs and the Risk Management Framework (RMF)
• Familiarity with Terraform and infrastructure-as-code for cloud resources
• Experience with Nix or NixOS
• Experience with SIEM platforms (e.g., Elastic) and security monitoring/incident response
• Experience securing and deploying ML/AI workloads - GPU environments, training pipelines, data classification
• Red teaming or penetration testing experience
• Certifications such as CKS, Security+, or CISSP
• Experience in defense, intelligence, or other regulated environments
• Join Helsing and work with world-leading experts in their fields
• Helsing's work is important. You'll be directly contributing to the protection of democratic countries while balancing both ethical and geopolitical concerns
• The work is unique. We operate in a domain that has highly unusual technical requirements and constraints, and where robustness, safety, and ethical considerations are vital. You will face unique Engineering and AI challenges that make a meaningful impact in the world
• In our domain, success is a matter of order-of-magnitude improvem

Benefits

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at helsing? Share your experience