DevOps Engineer

ROLE & RESPONSIBILITIES:

We are hiring a Senior DevSecOps / Security Engineer with 8+ years of experience securing AWS cloud, on-prem infrastructure, DevOps platforms, MLOps environments, CI/CD pipelines, container orchestration, and data/ML platforms. This role is responsible for creating and maintaining a unified security posture across all systems used by DevOps and MLOps teams — including AWS, Kubernetes, EMR, MWAA, Spark, Docker, GitOps, observability tools, and network infrastructure.

KEY RESPONSIBILITIES:

1.     Cloud Security (AWS)-

• Secure all AWS resources consumed by DevOps/MLOps/Data Science: EC2, EKS, ECS, EMR, MWAA, S3, RDS, Redshift, Lambda, CloudFront, Glue, Athena, Kinesis, Transit Gateway, VPC Peering.
• Implement IAM least privilege, SCPs, KMS, Secrets Manager, SSO & identity governance.
• Configure AWS-native security: WAF, Shield, GuardDuty, Inspector, Macie, CloudTrail, Config, Security Hub.
• Harden VPC architecture, subnets, routing, SG/NACLs, multi-account environments.
• Ensure encryption of data at rest/in transit across all cloud services.

2.     DevOps Security (IaC, CI/CD, Kubernetes, Linux)-

Infrastructure as Code & Automation Security:

• Secure Terraform, CloudFormation, Ansible with policy-as-code (OPA, Checkov, tfsec).
• Enforce misconfiguration scanning and automated remediation.

CI/CD Security:

• Secure Jenkins, GitHub, GitLab pipelines with SAST, DAST, SCA, secrets scanning, image scanning.
• Implement secure build, artifact signing, and deployment workflows.

Containers & Kubernetes:

• Harden Docker images, private registries, runtime policies.
• Enforce EKS security: RBAC, IRSA, PSP/PSS, network policies, runtime monitoring.
• Apply CIS Benchmarks for Kubernetes and Linux.

Monitoring & Reliability:

• Secure observability stack: Grafana, CloudWatch, logging, alerting, anomaly detection.
• Ensure audit logging across cloud/platform layers.

3.     MLOps Security (Airflow, EMR, Spark, Data Platforms, ML Pipelines)-

Pipeline & Workflow Security:

• Secure Airflow/MWAA connections, secrets, DAGs, execution environments.
• Harden EMR, Spark jobs, Glue jobs, IAM roles, S3 buckets, encryption, and access policies.

ML Platform Security:

• Secure Jupyter/JupyterHub environments, containerized ML workspaces, and experiment tracking systems.
• Control model access, artifact protection, model registry security, and ML metadata integrity.

Data Security:

• Secure ETL/ML data flows across S3, Redshift, RDS, Glue, Kinesis.
• Enforce data versioning security, lineage tracking, PII protection, and access governance.

ML Observability:

• Implement drift detection (data drift/model drift), feature monitoring, audit logging.
• Integrate ML monitoring with Grafana/Prometheus/CloudWatch.

4.     Network & Endpoint Security-

• Manage firewall policies, VPN, IDS/IPS, endpoint protection, secure LAN/WAN, Zero Trust principles.
• Conduct vulnerability assessments, penetration test coordination, and network segmentation.
• Secure remote workforce connectivity and internal office networks.

5.     Threat Detection, Incident Response & Compliance-

• Centralize log management (CloudWatch, OpenSearch/ELK, SIEM).
• Build security alerts, automated threat detection, and incident workflows.
• Lead incident containment, forensics, RCA, and remediation.
• Ensure compliance with ISO 27001, SOC 2, GDPR, HIPAA (as applicable).
• Maintain security policies, procedures, RRPs (Runbooks), and audits.

IDEAL CANDIDATE:

• 8+ years in DevSecOps, Cloud Security, Platform Security, or equivalent.
• Proven ability securing AWS cloud ecosystems (IAM, EKS, EMR, MWAA, VPC, WAF, GuardDuty, KMS, Inspector, Macie).
• Strong hands-on experience with Docker, Kubernetes (EKS), CI/CD tools, and Infrastructure-as-Code.
• Experience securing ML platforms, data pipelines, and MLOps systems (Airflow/MWAA, Spark/EMR).
• Strong Linux security (CIS hardening, auditing, intrusion detection).
• Proficiency in Python, Bash, and automation/scripting.
• Excellent knowledge of SIEM, observability, threat detection, monitoring systems.
• Understanding of microservices, API security, serverless security.
• Strong understanding of vulnerability management, penetration testing practices, and remediation plans.

EDUCATION:

• Master’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
• Relevant certifications (AWS Security Specialty, CISSP, CEH, CKA/CKS) are a plus.

PERKS, BENEFITS AND WORK CULTURE:

• Competitive Salary Package
• Generous Leave Policy
• Flexible Working Hours
• Performance-Based Bonuses
• Health Care Benefits

About The Role:

The products/services of Eclat Engineering Pvt. Ltd. are being used by some of the leading institutions in India and abroad. Our services/Products are rapidly growing in demand. We are looking for a capable and dynamic Senior DevOps engineer to help setup, maintain and scale the infrastructure operations. This Individual will have the challenging responsibility of channelling our IT infrastructure and offering customer services with stringent international standard levels of service quality. This individual will leverage the latest IT tools to automate and streamline the delivery of our services while implementing industry-standard processes and knowledge management.

Roles & Responsibilities:

- Infrastructure and Deployment Automation: Design, implement, and maintain automation for infrastructure

provisioning and application deployment. Own the CI/CD pipelines and ensure they are efficient, reliable, and

scalable.

- System Monitoring and Performance: -Take ownership of monitoring systems and ensure the health and

performance of the infrastructure. Proactively identify and address performance bottlenecks and system issues.

- Cloud Infrastructure Management: Manage cloud infrastructure (e.g., AWS, Azure, GCP) and optimize resource

usage. Implement cost-saving measures while maintaining scalability and reliability.

- Configuration Management: Manage configuration management tools (e.g., Ansible, Puppet, Chef) to ensure

consistency across environments. Automate configuration changes and updates.

- Security and Compliance: Own security policies, implement best practices, and ensure compliance with industry

standards. Lead efforts to secure infrastructure and applications, including patch management and access controls.

- Collaboration with Development and Operations Teams: Foster collaboration between development and

operations teams, promoting a DevOps culture. Be the go-to person for resolving cross-functional infrastructure

issues and improving the development process.

- Disaster Recovery and Business Continuity: Develop and maintain disaster recovery plans and procedures. Ensure

business continuity in the event of system failures or other disruptions.

- Documentation and Knowledge Sharing: Create and maintain comprehensive documentation for configurations,

processes, and best practices. Share knowledge and mentor junior team members.

- Technical Leadership and Innovation: Stay up-to-date with industry trends and emerging technologies. Lead efforts

to introduce new tools and technologies that enhance DevOps practices.

- Problem Resolution and Troubleshooting: Be responsible for diagnosing and resolving complex issues related to

infrastructure and deployments. Implement preventive measures to reduce recurring problems.

Requirements:

● B.E / B.Tech / M.E / M.Tech / MCA / M.Sc.IT (if not should be able to demonstrate required skills)

● Overall 3+ years of experience in DevOps and Cloud operations specifically in AWS.

● Experience with Linux Administrator

● Experience with microservice architecture, containers, Kubernetes, and Helm is a must

● Experience in Configuration Management preferably Ansible

● Experience in Shell Scripting is a must

● Experience in developing and maintaining CI/CD processes using tools like Gitlab, Jenkins

● Experience in logging, monitoring and analytics

● An Understanding of writing Infrastructure as a Code using tools like Terraform

● Preferences - AWS, Kubernetes, Ansible

Must Have:

● Knowledge of AWS Cloud Platform.

● Good experience with microservice architecture, Kubernetes, helm and container-based technologies

● Hands-on experience with Ansible.

● Should have experience in working and maintaining CI/CD Processes.

● Hands-on experience in version control tools like GIT.

● Experience with monitoring tools such as Cloudwatch/Sysdig etc.

● Sound experience in administering Linux servers and Shell Scripting.

● Should have a good understanding of IT security and have the knowledge to secure production environments (OS and server software).

What we look for:

As a DevOps Developer, you will contribute to a thriving and growing AIGovernance Engineering team. You will work in a Kubernetes-based microservices environment to support our bleeding-edge cloud services. This will include custom solutions, as well as open source DevOps tools (build and deploy automation, monitoring and data gathering for our software delivery pipeline). You will also be contributing to our continuous improvement and continuous delivery while increasing maturity of DevOps and agile adoption practices.

Responsibilities:

• Ability to deploy software using orchestrators /scripts/Automation on Hybrid and Public clouds like AWS
• Ability to write shell/python/ or any unix scripts
• Working Knowledge on Docker & Kubernetes
• Ability to create pipelines using Jenkins or any CI/CD tool and GitOps tool like ArgoCD
• Working knowledge of Git as a source control system and defect tracking system
• Ability to debug and troubleshoot deployment issues
• Ability to use tools for faster resolution of issues
• Excellent communication and soft skills
• Passionate and ability work and deliver in a multi-team environment
• Good team player
• Flexible and quick learner
• Ability to write docker files, Kubernetes yaml files / Helm charts
• Experience with monitoring tools like Nagios, Prometheus and visualisation tools such as Grafana.
• Ability to write Ansible, terraform scripts
• Linux System experience and Administration
• Effective cross-functional leadership skills: working with engineering and operational teams to ensure systems are secure, scalable, and reliable.
• Ability to review deployment and operational environments, i.e., execute initiatives to reduce failure, troubleshoot issues across the entire infrastructure stack, expand monitoring capabilities, and manage technical operations.

• Provision Dev Test Prod Infrastructure as code using IaC (Infrastructure as Code)
• Good knowledge on Terraform
• In-depth knowledge of security and IAM / Role Based Access Controls in Azure, management of Azure Application/Network Security Groups, Azure Policy, and Azure Management Groups and Subscriptions.
• Experience with Azure and GCP compute, storage and networking (we can also look for GCP )
• Experience in working with ADLS Gen2, Databricks and Synapse Workspace
• Experience supporting cloud development pipelines using Git, CI/CD tooling, Terraform and other Infrastructure as Code tooling as appropriate
• Configuration Management (e.g. Jenkins, Ansible, Git, etc...)
• General automation including Azure CLI, or Python, PowerShell and Bash scripting
• Experience with Continuous Integration/Continuous Delivery models
• Knowledge of and experience in resolving configuration issues
• Understanding of software and infrastructure architecture
• Experience in Paas, Terraform and AKS
• Monitoring, alerting and logging tools, and build/release processes Understanding of computing technologies across Windows and Linux

DevOps 

Engineers : Min 3 to 5 Years 
Tech Leads : Min 6 to 10 Years 

• Implementing & supporting CI/CD/CT pipelines at scale.  
• Knowledge and experience using Chef, Puppet or Ansible automation to deploy and be able to manage Linux systems in production and CI environments.  
• Extensive experience with Shell scripts (bash).  
• Knowledge and practical experience of Jenkins for CI.  
• Experienced in build & release management.  
• Experience of deploying JVM based applications.  
• Enterprise AWS deployment with sound knowledge on AWS & AWS security.  
• Knowledge of encryption technologies: IPSec, SSL, SSH. 
• Minimum of 2 years of experience as a Linux Systems Engineer (CentOS/Red Hat) ideally supporting a highly-available, 24x7 production environments. 
• DNS providing and maintenance.  
• Helpful skills: Knowledge of applications relying on Maven, Ant, Gradle, Spring Boot.  
• Knowledge of app and server monitoring tools such as ELK/AppEngine. 
• Excellent written, oral communication and interpersonal skills.