Senior Cloud & Devops Engineer

A DevSecOps Staff Engineer integrates security into DevOps practices, designing secure CI/CD

pipelines, building and automating secure cloud infrastructure and ensuring compliance across

development, operations, and security teams.

Responsibilities

• Design, build and maintain secure CI/CD pipelines utilizing DevSecOps principles and

practices to increase automation and reduce human involvement in the process

• Integrate tools of SAST, DAST, SCA, etc. within pipelines to enable automated application

building, testing, securing and deployment.

• Implement security controls for cloud platforms (AWS, GCP), including IAM, container

security (EKS/ECS), and data encryption for services like S3 or BigQuery, etc.

• Automate vulnerability scanning, monitoring, and compliance processes by collaborating

with DevOps and Development teams to minimize risks in deployment pipelines.

• Suggesting architecture improvements, recommending process improvements.

• Review cloud deployment architectures and implement required security controls.

• Mentor other engineers on security practices and processes.

Requirements

• Bachelor's degree, preferably in CS or a related field, or equivalent experience

• 10+ years of overall industry experience with AWS Certified - Security Specialist.• Must have implementation experience using security tools and processes related to SAST,

DAST and Pen Testing

• AWS-specific: 5+ years’ experience with using a broad range of AWS technologies (e.g.

EC2, RDS, ELB, S3, VPC, CloudWatch) to develop and maintain an Amazon AWS based

cloud solution, with an emphasis on best practice cloud security.

• Experienced with CI/CD tool chain (GitHub Actions, Packages, Jenkins, etc.)

• Passionate about solving security challenges and being informed of available and

emerging security threats and various security technologies.

• Must be familiar with the OWASP Top 10 Security Risks and Controls

• Good skills in at least one or more scripting languages: Python, Bash

• Good knowledge in Kubernetes, Docker Swarm or other cluster management software.

• Willing to work in shifts as required

Good to Have

• AWS Certified DevOps Engineer

• Observability: Experience with system monitoring tools (e.g. CloudWatch, New Relic,

etc.).

• Experience with Terraform/Ansible/Chef/Puppet

• Operating Systems: Windows and Linux system administration.

Perks:

● Day off on the 3rd Friday of every month (one long weekend each month)

● Monthly Wellness Reimbursement Program to promote health well-being

● Monthly Office Commutation Reimbursement Program

● Paid paternity and maternity leaves

Hi,

We are looking for candidate with experience in DevSecOps.

Please find below JD for your reference.

Responsibilities:

Execute shell scripts for seamless automation and system management.

Implement infrastructure as code using Terraform for AWS, Kubernetes, Helm, kustomize, and kubectl.

Oversee AWS security groups, VPC configurations, and utilize Aviatrix for efficient network orchestration.

Contribute to Opentelemetry Collector for enhanced observability.

Implement microsegmentation using AWS native resources and Aviatrix for commercial routes.

Enforce policies through Open Policy Agent (OPA) integration.

Develop and maintain comprehensive runbooks for standard operating procedures.

Utilize packet tracing for network analysis and security optimization.

Apply OWASP tools and practices for robust web application security.

Integrate container vulnerability scanning tools seamlessly within CI/CD pipelines.

Define security requirements for source code repositories, binary repositories, and secrets managers in CI/CD pipelines.

Collaborate with software and platform engineers to infuse security principles into DevOps teams.

Regularly monitor and report project status to the management team.

Qualifications:

Proficient in shell scripting and automation.

Strong command of Terraform, AWS, Kubernetes, Helm, kustomize, and kubectl.

Deep understanding of AWS security practices, VPC configurations, and Aviatrix.

Familiarity with Opentelemetry for observability and OPA for policy enforcement.

Experience in packet tracing for network analysis.

Practical application of OWASP tools and web application security.

Integration of container vulnerability scanning tools within CI/CD pipelines.

Proven ability to define security requirements for source code repositories, binary repositories, and secrets managers in CI/CD pipelines.

Collaboration expertise with DevOps teams for security integration.

Regular monitoring and reporting capabilities.

Site Reliability Engineering experience.

Hands-on proficiency with source code management tools, especially Git.

Cloud platform expertise (AWS, Azure, or GCP) with hands-on experience in deploying and managing applications.

Please send across your updated profile.

Job Purpose and Impact

The DevOps Engineer is a key position to strengthen the security automation capabilities which have been identified as a critical area for growth and specialization within Global IT’s scope. As part of the Cyber Intelligence Operation’s DevOps Team, you will be helping shape our automation efforts by building, maintaining and supporting our security infrastructure.

Key Accountabilities

• Collaborate with internal and external partners to understand and evaluate business requirements.
• Implement modern engineering practices to ensure product quality.
• Provide designs, prototypes and implementations incorporating software engineering best practices, tools and monitoring according to industry standards.
• Write well-designed, testable and efficient code using full-stack engineering capability.
• Integrate software components into a fully functional software system.
• Independently solve moderately complex issues with minimal supervision, while escalating more complex issues to appropriate staff.
• Proficiency in at least one configuration management or orchestration tool, such as Ansible.
• Experience with cloud monitoring and logging services.

Qualifications

Minimum Qualifications

• Bachelor's degree in a related field or equivalent exp
• Knowledge of public cloud services & application programming interfaces
• Working exp with continuous integration and delivery practices

Preferred Qualifications

• 3-5 years of relevant exp whether in IT, IS, or software development
• Exp in:
•  Code repositories such as Git
• Scripting languages (Python & PowerShell)
• Using Windows, Linux, Unix, and mobile platforms within cloud services such as AWS
• Cloud infrastructure as a service (IaaS) / platform as a service (PaaS), microservices, Docker containers, Kubernetes, Terraform, Jenkins
• Databases such as Postgres, SQL, Elastic

Objectives :

• Building and setting up new development tools and infrastructure
• Working on ways to automate and improve development and release processes
• Testing code written by others and analyzing results
• Ensuring that systems are safe and secure against cybersecurity threats
• Identifying technical problems and developing software updates and ‘fixes’
• Working with software developers and software engineers to ensure that development follows established processes and works as intended
• Planning out projects and being involved in project management decisions

Daily and Monthly Responsibilities :

• Deploy updates and fixes
• Build tools to reduce occurrences of errors and improve customer experience
• Develop software to integrate with internal back-end systems
• Perform root cause analysis for production errors
• Investigate and resolve technical issues
• Develop scripts to automate visualization
• Design procedures for system troubleshooting and maintenance

Skills and Qualifications :

• Degree in Computer Science or Software Engineering or BSc in Computer Science, Engineering or relevant field
• 3+ years of experience as a DevOps Engineer or similar software engineering role
• Proficient with git and git workflows
• Good logical skills and knowledge of programming concepts(OOPS,Data Structures)
• Working knowledge of databases and SQL
• Problem-solving attitude
• Collaborative team spirit

Key Sills Required for Lead DevOps Engineer

Containerization Technologies

Docker, Kubernetes, OpenShift

Cloud Technologies

AWS/Azure, GCP

CI/CD Pipeline Tools

Jenkins, Azure Devops

Configuration Management Tools

Ansible, Chef,

SCM Tools

Git, GitHub, Bitbucket

Monitoring Tools

New Relic, Nagios, Prometheus

Cloud Infra Automation

Terraform

Scripting Languages

Python, Shell, Groovy

·       Ability to decide the Architecture for the project and tools as per the availability

·       Sound knowledge required in the deployment strategies and able to define the timelines

·       Team handling skills are a must

·       Debugging skills are an advantage

·       Good to have knowledge of Databases like Mysql, Postgresql

It is advantageous to be familiar with Kafka. RabbitMQ

·       Good to have knowledge of Web servers to deploy web applications

·       Good to have knowledge of Code quality checking tools like SonarQube and Vulnerability scanning

·       Advantage to having experience in DevSecOps

Note: Tools mentioned in bold are a must and others are added advantage

Hiring for a funded fintech startup based out of Bangalore!!!

Our Ideal Candidate

We are looking for a Senior DevOps engineer to join the engineering team and help us automate the build, release, packaging and infrastructure provisioning and support processes. The candidate is expected to own the full life-cycle of provisioning, configuration management, monitoring, maintenance and support for cloud as well as on-premise deployments.

Requirements

• 5-plus years of DevOps experience managing the Big Data application stack including HDFS, YARN, Spark, Hive and Hbase
• Deeper understanding of all the configurations required for installing and maintaining the infrastructure in the long run
• Experience setting up high availability, configuring resource allocation, setting up capacity schedulers, handling data recovery tasks
• Experience with middle-layer technologies including web servers (httpd, ningx), application servers (Jboss, Tomcat) and database systems (postgres, mysql)
• Experience setting up enterprise security solutions including setting up active directories, firewalls, SSL certificates, Kerberos KDC servers, etc.
• Experience maintaining and hardening the infrastructure by regularly applying required security packages and patches
• Experience supporting on-premise solutions as well as on AWS cloud
• Experience working with and supporting Spark-based applications on YARN
• Experience with one or more automation tools such as Ansible, Teraform, etc
• Experience working with CI/CD tools like Jenkins and various test report and coverage plugins
• Experience defining and automating the build, versioning and release processes for complex enterprise products
• Experience supporting clients remotely and on-site
• Experience working with and supporting Java- and Python-based tech stacks would be a plus

Desired Non-technical Requirements

• Very strong communication skills both written and verbal
• Strong desire to work with start-ups
• Must be a team player

Job Perks

• Attractive variable compensation package
• Flexible working hours – everything is results-oriented
• Opportunity to work with an award-winning organization in the hottest space in tech – artificial intelligence and advanced machine learning