DevOps Engineer

ROLE & RESPONSIBILITIES:

We are hiring a Senior DevSecOps / Security Engineer with 8+ years of experience securing AWS cloud, on-prem infrastructure, DevOps platforms, MLOps environments, CI/CD pipelines, container orchestration, and data/ML platforms. This role is responsible for creating and maintaining a unified security posture across all systems used by DevOps and MLOps teams — including AWS, Kubernetes, EMR, MWAA, Spark, Docker, GitOps, observability tools, and network infrastructure.

KEY RESPONSIBILITIES:

1.     Cloud Security (AWS)-

• Secure all AWS resources consumed by DevOps/MLOps/Data Science: EC2, EKS, ECS, EMR, MWAA, S3, RDS, Redshift, Lambda, CloudFront, Glue, Athena, Kinesis, Transit Gateway, VPC Peering.
• Implement IAM least privilege, SCPs, KMS, Secrets Manager, SSO & identity governance.
• Configure AWS-native security: WAF, Shield, GuardDuty, Inspector, Macie, CloudTrail, Config, Security Hub.
• Harden VPC architecture, subnets, routing, SG/NACLs, multi-account environments.
• Ensure encryption of data at rest/in transit across all cloud services.

2.     DevOps Security (IaC, CI/CD, Kubernetes, Linux)-

Infrastructure as Code & Automation Security:

• Secure Terraform, CloudFormation, Ansible with policy-as-code (OPA, Checkov, tfsec).
• Enforce misconfiguration scanning and automated remediation.

CI/CD Security:

• Secure Jenkins, GitHub, GitLab pipelines with SAST, DAST, SCA, secrets scanning, image scanning.
• Implement secure build, artifact signing, and deployment workflows.

Containers & Kubernetes:

• Harden Docker images, private registries, runtime policies.
• Enforce EKS security: RBAC, IRSA, PSP/PSS, network policies, runtime monitoring.
• Apply CIS Benchmarks for Kubernetes and Linux.

Monitoring & Reliability:

• Secure observability stack: Grafana, CloudWatch, logging, alerting, anomaly detection.
• Ensure audit logging across cloud/platform layers.

3.     MLOps Security (Airflow, EMR, Spark, Data Platforms, ML Pipelines)-

Pipeline & Workflow Security:

• Secure Airflow/MWAA connections, secrets, DAGs, execution environments.
• Harden EMR, Spark jobs, Glue jobs, IAM roles, S3 buckets, encryption, and access policies.

ML Platform Security:

• Secure Jupyter/JupyterHub environments, containerized ML workspaces, and experiment tracking systems.
• Control model access, artifact protection, model registry security, and ML metadata integrity.

Data Security:

• Secure ETL/ML data flows across S3, Redshift, RDS, Glue, Kinesis.
• Enforce data versioning security, lineage tracking, PII protection, and access governance.

ML Observability:

• Implement drift detection (data drift/model drift), feature monitoring, audit logging.
• Integrate ML monitoring with Grafana/Prometheus/CloudWatch.

4.     Network & Endpoint Security-

• Manage firewall policies, VPN, IDS/IPS, endpoint protection, secure LAN/WAN, Zero Trust principles.
• Conduct vulnerability assessments, penetration test coordination, and network segmentation.
• Secure remote workforce connectivity and internal office networks.

5.     Threat Detection, Incident Response & Compliance-

• Centralize log management (CloudWatch, OpenSearch/ELK, SIEM).
• Build security alerts, automated threat detection, and incident workflows.
• Lead incident containment, forensics, RCA, and remediation.
• Ensure compliance with ISO 27001, SOC 2, GDPR, HIPAA (as applicable).
• Maintain security policies, procedures, RRPs (Runbooks), and audits.

IDEAL CANDIDATE:

• 8+ years in DevSecOps, Cloud Security, Platform Security, or equivalent.
• Proven ability securing AWS cloud ecosystems (IAM, EKS, EMR, MWAA, VPC, WAF, GuardDuty, KMS, Inspector, Macie).
• Strong hands-on experience with Docker, Kubernetes (EKS), CI/CD tools, and Infrastructure-as-Code.
• Experience securing ML platforms, data pipelines, and MLOps systems (Airflow/MWAA, Spark/EMR).
• Strong Linux security (CIS hardening, auditing, intrusion detection).
• Proficiency in Python, Bash, and automation/scripting.
• Excellent knowledge of SIEM, observability, threat detection, monitoring systems.
• Understanding of microservices, API security, serverless security.
• Strong understanding of vulnerability management, penetration testing practices, and remediation plans.

EDUCATION:

• Master’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
• Relevant certifications (AWS Security Specialty, CISSP, CEH, CKA/CKS) are a plus.

PERKS, BENEFITS AND WORK CULTURE:

• Competitive Salary Package
• Generous Leave Policy
• Flexible Working Hours
• Performance-Based Bonuses
• Health Care Benefits

Key Responsibilities: 

• Develop and Maintain CI/CD Pipelines: Design, implement, and manage CI/CD pipelines using GitOps practices. 
• Kubernetes Management: Deploy, manage, and troubleshoot Kubernetes clusters to ensure high availability and scalability of applications. 
• Cloud Infrastructure: Design, deploy, and manage cloud infrastructure on AWS, utilizing services such as EC2, S3, RDS, Lambda, and others. 
• Infrastructure as Code: Implement and manage infrastructure using IaC tools like Terraform, CloudFormation, or similar. 
• Monitoring and Logging: Set up and manage monitoring, logging, and alerting systems to ensure the health and performance of the infrastructure. 
• Automation: Identify and automate repetitive tasks to improve efficiency and reliability. 
• Security: Implement security best practices and ensure compliance with industry standards. 
• Collaboration: Work closely with development, QA, and operations teams to ensure seamless integration and delivery of products. 

Required Skills and Qualifications: 

• Experience: 2-5 years of experience in a DevOps role. 
• AWS: In-depth knowledge of AWS services and solutions. 
• CI/CD Tools: Experience with CI/CD tools such as Jenkins, GitLab CI, CircleCI, or similar. 
• GitOps Expertise: Proficient in GitOps methodologies and tools. 
• Kubernetes: Strong hands-on experience with Kubernetes and container orchestration. 
• Scripting and Automation: Proficient in scripting languages such as Bash, Python, or similar. 
• Infrastructure as Code (IaC): Hands-on experience with IaC tools like Terraform, CloudFormation, or similar. 
• Monitoring Tools: Familiarity with monitoring and logging tools like Prometheus, Grafana, ELK stack, or similar. 
• Version Control: Strong understanding of version control systems, primarily Git. 
• Problem-Solving: Excellent problem-solving and debugging skills. 
• Collaboration: Ability to work in a fast-paced, collaborative environment. 
• Education: Bachelor’s or master’s degree in computer science or a related field. 

We are looking for a DevOps Lead to join our team.

Responsibilities

• A technology Professional who understands software development and can solve IT Operational and deployment challenges using software engineering tools and processes. This position requires an understanding of both Software development (Dev) and deployment

Operations (Ops)

• Identity manual processes and automate them using various DevOps automation tools

• Maintain the organization’s growing cloud infrastructure

• Monitor and maintain DevOps environment stability

• Collaborate with distributed Agile teams to define technical requirements and resolve technical design issues

• Orchestrating builds and test setups using Docker and Kubernetes.

• Participate in designing and building Kubernetes, Cloud, and on-prem environments for maximum performance, reliability and scalability

• Share business and technical learnings with the broader engineering and product organization, while adapting approaches for different audiences

Requirements

• Candidates working for this position should possess at least 5 years of work experience as a DevOps Engineer.

• Candidate should have experience in ELK stack, Kubernetes, and Docker.

• Solid experience in the AWS environment.

• Should have experience in monitoring tools like DataDog or Newrelic.

• Minimum of 5 years experience with code repository management, code merge and quality checks, continuous integration, and automated deployment & management using tools like Jenkins, SVN, Git, Sonar, and Selenium.

• Candidates must possess ample knowledge and experience in system automation, deployment, and implementation.

• Candidates must possess experience in using Linux, Jenkins, and ample experience in configuring and automating the monitoring tools.

• The candidates should also possess experience in the software development process and tools and languages like SaaS, Python, Java, MongoDB, Shell scripting, Python, PostgreSQL, and Git.

• Candidates should demonstrate knowledge in handling distributed data systems.

Examples: Elastisearch, Cassandra, Hadoop, and others.

• Should have experience in GitLab- CIRoles and Responsibilities

Title: Cloud DevOps Engineer 

Role: Individual Contributor (4-8 yrs)  

Requirements: 

• Energetic self-starter, a fast learner, with a desire to work in a startup environment  
• Experience working with Public Clouds like AWS 

• Operating and Monitoring cloud infrastructure on AWS. 
• Primary focus on building, implementing and managing operational support 
• Design, Develop and Troubleshoot Automation scripts (Configuration/Infrastructure as code or others) for Managing Infrastructure. 
• Expert at one of the scripting languages – Python, shell, etc  
• Experience with Nginx/HAProxy, ELK Stack, Ansible, Terraform, Prometheus-Grafana stack, etc 

• Handling load monitoring, capacity planning, and services monitoring. 
• Proven experience With CICD Pipelines and Handling Database Upgrade Related Issues. 
• Good Understanding and experience in working with Containerized environments like Kubernetes and Datastores like Cassandra, Elasticsearch, MongoDB, etc

About BootLabs

https://www.google.com/url?q=https://www.bootlabs.in/&;sa=D&source=calendar&ust=1667803146567128&usg=AOvVaw1r5g0R_vYM07k6qpoNvvh6" target="_blank">https://www.bootlabs.in/

-We are a Boutique Tech Consulting partner, specializing in Cloud Native Solutions. 
-We are obsessed with anything “CLOUD”. Our goal is to seamlessly automate the development lifecycle, and modernize infrastructure and its associated applications.
-With a product mindset, we enable start-ups and enterprises on the cloud
transformation, cloud migration, end-to-end automation and managed cloud services. 
-We are eager to research, discover, automate, adapt, empower and deliver quality solutions on time.
-We are passionate about customer success. With the right blend of experience and exuberant youth in our in-house team, we have significantly impacted customers.

• AWS 

•  Azure

• GCP

DevOps Engineer

Job Description:

The position requires a broad set of technical and interpersonal skills that includes deployment technologies, monitoring and scripting from networking to infrastructure. Well versed in troubleshooting Prod issues and should be able to drive till the RCA.

Skills:

• Manage VMs across multiple datacenters and AWS to support dev/test and production workloads.
• Strong hands-on over Ansible is preferred
• Strong knowledge and hands-on experience in Kubernetes Architecture and administration.
• Should have core knowledge in Linux and System operations.
• Proactively and reactively resolve incidents as escalated from monitoring solutions and end users.
• Conduct and automate audits for network and systems infrastructure.
• Do software deployments, per documented processes, with no impact to customers.
• Follow existing devops processes while having flexibility to create and tweak processes to gain efficiency.
• Troubleshoot connectivity problems across network, systems or applications.
• Follow security guidelines, both policy and technical to protect our customers.
• Ability to automate recurring tasks to increase velocity and quality.
• Should have worked on any one of the Database (Postgres/Mongo/Cockroach/Cassandra)
• Should have knowledge and hands-on experience in managing ELK clusters.
• Scripting Knowledge in Shell/Python is added advantage.
• Hands-on Experience over K8s based Microservice Architecture is added advantage.

- You will manage all elements of the post-sale program relationship with your customers, starting with customer on-boarding and continuing throughout the customer relationship. 

- As the primary customer interface, you engage with customer teams to educate, identify needs, develop designs, set goals, manage and execute on plans that unlock continuous, incremental value from their investments in the CloudPassage Halo platform.

- You are hands-on during execution and thoroughly enjoy seeing your security projects come to life and supporting them afterwards. You are a trusted adviser.

Responsibilities :

- Manage a portfolio of 5+ Enterprise customer accounts with complex needs (typical enterprise customers invest between $500k and $4m+ per year with CloudPassage, have hundreds to tens of thousands of individual public cloud infrastructure deployments, and protect hundreds of thousands of cloud infrastructure assets with Halo).

- Provide level-3 technical support on your customer's most complex issues

- Lead implementation of low-level security controls in Cloud environments, for services, server and containers

- Remotely diagnose & resolve DevSecOps issues in customer environments - able to resolve their DevOps issues that may be interfering with CloudPassage processing.

- Interact with CloudPassage Engineering team by providing customer issue reproduction and data capture, technical diagnostics and validating fixes. QA experience preferred.

- Establish and program manage proactive, value-driven, high-touch relationships with your customers to understand, document and align customer strategies, business objectives, designs, processes and projects with Halo platform capabilities and broader CloudPassage services.

- Develop a trusted advisor relationship by building and maintaining appropriate relationships at all levels with your customer accounts, creating a premium and high-caliber experience.

- Ensure continued satisfaction, identify & confirm unaddressed customer needs that can be value-add opportunities for up-sell and cross-sell, and communicate those needs to the CloudPassage sales team. Identify any early CSAT issues and renewal risks and work with the internal team to remediate and ensure strong CSAT and a successful renewal.

- Be a strong customer advocate within CloudPassage and identify and support areas for improvement in the customer experience, both in our product and processes.

- Be team-oriented, but with a bias towards action to get things done for your customers.

Requirements : Strong cloud security knowledge & experience including :

- End-to-end enterprise security processes

- Cloud security - cloud migrations & shift in security requirements, tooling & approach

- Hands-on DevOps, DevSecOps architecture & automation (critical)

- 4+ years experience in security consulting and project/program management serving cybersecurity customers.

- Complex, level 3 technical support

- Remotely diagnosing & resolving DevSecOps issues in customer environments

- Interacting with CloudPassage Engineering team with customer issue reproduction

- Experience working in a security SaaS company in a startup environment.
 
- Experience working with Executive and C-Level teams.

- Ability to build and maintain strong relationships with internal and external constituents.

- Excellent organization, project management, time management, and communication skills.

- Understand and document customer requirements, map to product, track & report metrics, identify up-sell and cross-sell opportunities.
 
- Analytical both quantitatively and qualitatively.

- Excellent verbal and written communication skills.
 
- Security certifications (Security +, CISSP, etc.).

Expert Technical Skills :

- Consulting and project management : documenting project charters, project plans, executing delivery management, status reporting. Executive-level presentation skills.

- Security best practices expertise : software vulnerabilities, configuration management, intrusion detection, file integrity.

- System administration (including Linux and Windows) of cloud environments : AWS, Azure, GCP; strong networking/proxy skills.

Proficient Technical Skills :

- Configuration/Orchestration (Chef, Puppet, Ansible, SaltStack, CloudFormation, Terraform).

- CI/CD processes and environments.

Familiar Technical Skills & Knowledge : Python scripting & REST API's, Docker containers, Zendesk & JIRA.