About this role
<p><b>Requisition ID: </b>1781</p> <p><b>Standard Weekly Hours: </b>40.00<b> </b></p> <p><b>Location: </b>ULA - Denver<b> </b></p> <p><b>Relocation: </b>Yes- Relocation may be available<b> </b></p> <p><b>Travel Requirements: </b>None/Infrequent<b> </b></p> <p> </p> <p><b>At ULA, success comes through the efforts of a strong, united team.</b></p> <p> </p> <p>Thanks for your interest in United Launch Alliance, the world's most experienced and reliable space launch company! Successfully launching more than 155 consecutive missions with 100% mission success doesn't happen by accident. It's a testament to the commitment and dedication of our team of rocket scientists and support employees combined with the systems and processes we use to pull them together. As a ULA employee, you'll have the opportunity to grow in your career while working in a team-oriented culture that combines technology, innovation, ingenuity and a commitment to the extraordinary. Whether you are in college just launching your career, or, have experience and want to come work with the best rocket team in the world, our unshakable unity yields stronger solutions and better results as we carry out our mission to save lives, explore the universe, and connect the world. Our team is excited to meet you!</p> <div><div style="padding:10.0px 0.0px;border:1.0px solid transparent"><div style="font-size:14.0px;word-wrap:break-word"><H2 style="font-size:1.0em;margin:0.0px"><u><b>Job Overview & Responsibilities</b></u></H2> </div><div><p> </p> <p><p><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><span>At ULA, our mission success depends on a secure, reliable, and high‑performing software development ecosystem. As a <strong>CI/CD Infrastructure Software Engineer</strong> specializing in AppSec and Operations, you will play a critical role in maintaining and advancing ULA’s core CI/CD toolchain, including GitLab, Artifactory, XRay, and SonarQube. In this role, you will support tool uptime, execute security scanning workflows, troubleshoot pipeline and runner issues, and ensure that ULA’s development environment meets rigorous audit, compliance, and reliability standards. You will partner across Software Engineering, Cybersecurity, and Cloud teams to strengthen secure coding practices and deliver stable, mission‑aligned development infrastructure that enables engineers to build with confidence.</span> </span></p> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="text-decoration:underline;font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Core Technical Competencies:</strong></span></p> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>CI/CD Infrastructure & Tooling</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Experience supporting and operating on-prem and cloud based Continuous Integration / Continuous Deployment (CI/CD) platforms, including:</span> <ul style="list-style-type:circle;margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>JFrog Artifactory</strong> lifecycle management and repository governance</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>JFrog XRay</strong> scanning management and policy enforcement</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>SonarQube</strong> configuration, ruleset updates, and remediation workflows</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>GitLab</strong> runners, permissions, and basic pipeline troubleshooting</span><br><br></li> </ul> </li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Application Security (AppSec) Foundations</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Understanding of secure coding concepts, static analysis, dependency scanning, Common Vulnerabilities and Exposures (CVE) identification, and application security remediation workflows.</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Ability to execute scanning routines, analyze findings, open remediation tasks, and support the secure coding dashboard & remediation cycle.</span><br><br></li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Cloud & Containerization Familiarity</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Basic hands‑on experience with Amazon Web Services (AWS) core services, especially those relevant to CI/CD and scanning pipelines (S3, IAM, EC2/EKS).</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Familiarity with Kubernetes concepts and supporting Kubernetes based workloads.</span><br><br></li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Infrastructure as Code & Automation</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Foundational experience with Infrastructure as Code (IaC) or automation tooling such as Terraform, Ansible, Bash/Python scripting.</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Ability to follow established IaC patterns to support CI/CD infrastructure updates, maintenance tasks, and access configurations.</span></li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"> </p> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="text-decoration:underline"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Operational Responsibilities:</strong></span></span></p> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Platform Operations</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Perform day‑to‑day operations for CI/CD tools (Artifactory/XRay/SonarQube/GitLab) including:</span> <ul style="list-style-type:circle;margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">User access, permission updates, and audit support</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Backup/restore tasks</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Monitoring, alert response, and system health checks</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Package and artifact lifecycle management</span></li> </ul> </li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Support quarterly upgrade cycles, configuration fixes, and stability improvements.</span></li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong> </strong><strong>Security Scanning & Remediation Support</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Execute routine security scans across tools and pipelines.</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Review, triage, and escalating CVE or policy violations.</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Assist SWE teams in interpreting scanner reports and preparing remediation tasks.</span></li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong> </strong><strong>Pipeline Support</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Assist CI/CD engineers and developers with pipeline break/fix issues.</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Maintain reliable builds for Software Engineering Teams by supporting artifact availability, scanner health, and GitLab runner readiness.</span></li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Compliance & Documentation</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Participate in Cybersecurity Maturity Model Certification (CMMC) and National Institute of Standards and Technology (NIST) related remediation work through accurate documentation, required evidence capture, and execution of recurring security activities.</span><br><br></li> </ul> <p style="margin:0.0in 0.0in 8.0pt;line-height:115%;font-size:12.0pt;font-family:Aptos, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt"><strong>Collaboration & Communication Expectations</strong></span></p> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Work closely with senior engineers, including members of Cloud, CI/CD Infrastructure, and CI/CD Pipelines, on shared engineering tasks.</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Provide timely support to Software Engineering Teams during migrations, scanning cycles, or code delivery events.</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Communicate clearly with cross‑functional teams.</span></li> </ul></p> <p> </p> <p><u><b>Required Education</b></u></p> <p>Bachelor</p> <p> </p> <p><u><b>Required Years of Experience</b></u></p> <p>Minimum of 4 years of related work experience</p> <p> </p> <p><u><b>Basic Qualifications</b></u></p> <p><ul> <li style="font-size:10.0pt"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Bachelor's degree in a STEM (Science, Technology, Engineering, Mathematics) field from an accredited college or university</span></li> <li style="font-size:10.0pt"><span style="font-size:10.0pt">Four years of directly related exempt work experience may be used to satisfy the bachelor’s degree requirement</span></li> <li style="font-size:10.0pt"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">4+ years of experience in DevOps, Cloud Engineering, Application Security (AppSec), or Software Engineering</span></li> <li style="line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Experience supporting production CI/CD systems or DevSecOps workflows</span></li> <li style="line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-size:10.0pt"><span style="font-family:arial, helvetica, sans-serif">H</span><span style="font-family:arial, helvetica, sans-serif">ands‑on experience with the following: GitLab, Artifactory, SonarQube, or security scanning tools</span></span></li> <li style="line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Intermediate understanding of software build pipelines, package repositories, and code quality concepts</span></li> <li style="line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Familiarity with AWS fundamentals and containerization concepts (Docker/Kubernetes)</span></li> <li style="line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Ability to follow runbooks, execute operational tasks reliably, and document changes clearly</span></li> <li style="line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Exposure to security frameworks or audit‑driven engineering tasks</span></li> <li style="line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Mid-to-senior level experience with Terraform or another IaC tool</span></li> </ul></p> <p> </p> <p><u><b>Preferred Qualifications</b></u></p> <p><ul style="margin-bottom:0.0in;margin-top:0.0px"> <li><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Interest in automation, efficiency improvements, and evolving CI/CD and AppSec capability</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">Any of the following certificates is a plus:</span> <ul style="margin-bottom:0.0in;margin-top:0.0px"> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">AWS Cloud Practitioner</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">AWS Solutions Architect (Associate level)</span></li> <li style="margin:0.0in 0.0in 8.0pt 0.0px;line-height:115%;font-size:10.0pt;font-family:arial, helvetica, sans-serif"><span style="font-family:arial, helvetica, sans-serif;font-size:10.0pt">CKA – Certified Kubernetes Admin</span></li> </ul> </li> </ul></p></div></div></div><p><span style="font-size:14.0px"><u><b>Summary Salary Range (for ULA - Denver</b> <b>only):</b></u> $113,122.00 - $188,537.00 </span></p> <p> </p> <p><span style="font-size:14.0px"><em>Please note that the salary information shown above is a general guideline only. Salaries are based upon a candidate's experience and qualifications, as well as internal equity, market and business considerations. Employees may be eligible for a discretionary annual bonus in addition to base pay. </em></span></p> <p> </p> <p><span style="font-size:14.0px"><u><b>What makes ULA different?</b></u></span></p> <p><span style="font-size:14.0px">Because we understand launch success comes through the collective efforts of a team, we seek the best to join us. We value ethics, ingenuity, engagement and professional development for employees at all levels.</span></p> <p> </p> <p><span style="font-size:14.0px">We offer our employees competitive pay and benefits including:</span></p> <ul> <li><span style="font-size:14.0px">401(k) match plus an additional employer contribution</span></li> <li><span style="font-size:14.0px">Discretionary annual incentive bonus for eligible employees</span></li> <li><span style="font-size:14.0px">Generous paid time off</span></li> <li><span style="font-size:14.0px">Flexible work environments</span></li> </ul> <p> </p> <p><span style="font-size:14.0px">Additionally, most salaried ULA team members work a "9/80 schedule," meaning they enjoy every other Friday off.</span></p> <p> </p> <p><span style="font-size:14.0px"><em>Benefits and work schedules may vary for union-represented hourly positions and are described in the applicable collective bargaining agreement.</em></span></p> <p> </p> <p><span style="font-size:14.0px">The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.</span></p> <p> </p> <p><span style="font-size:14.0px"><u><b>Security Clearance / International Traffic In Arms Regulations (ITAR).</b></u><em> </em>This position requires use of information which is subject to the International Traffic In Arms Regulations (ITAR). Therefore, all applicants must be U.S. Persons as defined in ITAR 22 CFR 120.62 (e.g., U.S. Citizen, Lawful Permanent Resident (Green Card holder) or protected individual. See 8 U.S.C. 1101(a)(20) and 8 U.S.C. 1324b(a)(3) for additional information).</span></p> <p> </p> <p><span style="font-size:14.0px"><u><b>ULA is an Equal Opportunity Employer.</b></u><em> </em>All qualified applicants will receive consideration for employment.</span></p> <p> </p> <p><span style="font-size:14.0px"><u><b>ULA is a participant in the federal E-Verify Program. </b></u>Posters in PDF format pertaining to this program can be accessed by clicking on the links identified below. E-Verify Participation poster (<a href="https://www.ulalaunch.com/docs/default-source/default-document-library/e-verify_poster_v08-08_standard_english.pdf">English</a> / <a href="https://www.ulalaunch.com/docs/default-source/default-document-library/everifyposterspanish1.pdf">Spanish</a>) and Right to Work Poster (<a href="https://www.ulalaunch.com/docs/default-source/default-document-library/oscrighttoworkposter-english.pdf">English</a> / <a href="https://www.ulalaunch.com/docs/default-source/default-document-library/righttoworkspanishposter.pdf">Spanish</a>).</span></p> <p> </p> <p><span style="font-size:14.0px"><span style="font-family:Arial, Helvetica, sans-serif"><u><b>Colorado Equal Pay for Equal Work Act</b></u> requires covered employees to follow a post selection notification process. A hired candidate may opt out of this process by notifying the hiring manager in writing at the time the offer is accepted</span></span></p>