Senior Security & Compliance Engineer - eLxreLxreLxr is a Debian-based Linux distribution engineered for performance, reliability, and enterprise class- security. We are expanding our core engineering team and seeking a highly skilled Security & Compliance Engineer to lead security initiatives for eLxr, our Debian-based operating system.
YOUR ROLEThis role is critical to ensuring compliance, security hardening, and audit readiness across all components of our ecosystem, including OS images, installers, CI/CD pipelines, and entitlement systems.
HOW YOU WILL CONTRIBUTE- Drive adherence to FIPS, STIG, CIS benchmarks, and Secure Development Lifecycle (SDL) practices.
- Manage encryption tools (e.g., OpenSSL and related libraries) and ensure cryptographic compliance.
- Security & Compliance: Implement and maintain segmentation, secrets management, certificate lifecycle processes, and least privilege access controls.
- Ensure audit readiness and compliance with industry standards.
- Image & Installer Management: Oversee generation of OS images (.iso, qcow2, container images) and maintain secure OS installer workflows.
- CI/CD & Backend Systems: Secure CI pipelines and entitlement backend systems, ensuring integrity and compliance throughout build and deployment processes.
- Vulnerability Management: Monitor CVEs, manage vulnerability remediation, and
coordinate timely patching and fixes - Secure Boot & Encryption: Implement and maintain secure boot processes.
- Security Testing: Develop and execute security testing strategies, including regression and final build validation.
- Web Properties & Portals: Ensure security and compliance across all sites (.org, .pro, .dev) and entitlement portals.
Required Qualifications:- Bachelor's degree in computer science, Cybersecurity, or related field (or equivalent experience).
- 8+ years of experience in Linux security engineering, preferably with Debian or derivatives.
- Strong knowledge of compliance frameworks (FIPS, STIG, CIS) and SDL practices.
- Hands-on experience with secure boot, encryption tools, and vulnerability management.
- Proficiency in CI/CD security, image generation, and OS installer processes.
- Familiarity with CVE tracking, patching baselines, and audit readiness.
- Excellent problem-solving and communication skills.
- United States Citizenship required or permanent residency is required.
Preferred Skills:- Experience with container security (Docker, Podman).
- Knowledge of entitlement systems and license management.
- Familiarity with large-scale Linux deployments and automation tools (Ansible, Puppet, etc.).
- Contributions to open-source projects.
BENEFITS - Hybrid work model for workplace flexibility
- Comprehensive health, dental, and life insurance
- Short and long-term disability coverage
- RRSP matching for financial security
- Flexible time-off policies for work-life balance
- Employee assistance program for mental well-being
- Learning benefits, including a LinkedIn Learning subscription and seminars
Join us at Wind River, where we're not just shaping technology; we're shaping the future of a safer, more connected world. Your journey to make a meaningful impact begins here.
Special Clearance RequirementsThis position will perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil, and therefore any offer will be contingent upon verification of both of these requirements.
