About us: GE is building industrial IoT and analytics to help Power the world more efficiently. The Secure DevOps team is a new team focused on helping the business build secure software on GE's Predix platform (predix.io).
About the role: You'd be focused on building security libraries for Predix developers, automating the security development lifecycle (building or deploying CI plugins to integrate development with static analysis and dynamic analysis security tooling, automate reports, log generation & shipping, etc), training development teams in secure coding practices, and participating in code & architecture reviews from a security perspective.
There's a good chance you might be asked to join sprints to quickly shore up insecure code, analyze existing platforms and software for design flaws and vulnerabilities, and craft good common sense policies as well.
Our goal is to enable our product teams to ship daily code while maintaining a very high level of security.
Main technology: Java with Spring is the most frequently used for web components, but more teams are picking up Node and Go. Python and C++ are often used in devices.
The job will be posted in the next few days on ge.com/careers. If this sounds interesting, shoot me an email (in profile) and I will tell you as soon as it is posted or answer any questions you have.