ServiceMax

ROLE & RESPONSIBILITIES:

We are hiring a Senior DevSecOps / Security Engineer with 8+ years of experience securing AWS cloud, on-prem infrastructure, DevOps platforms, MLOps environments, CI/CD pipelines, container orchestration, and data/ML platforms. This role is responsible for creating and maintaining a unified security posture across all systems used by DevOps and MLOps teams — including AWS, Kubernetes, EMR, MWAA, Spark, Docker, GitOps, observability tools, and network infrastructure.

KEY RESPONSIBILITIES:

1.     Cloud Security (AWS)-

• Secure all AWS resources consumed by DevOps/MLOps/Data Science: EC2, EKS, ECS, EMR, MWAA, S3, RDS, Redshift, Lambda, CloudFront, Glue, Athena, Kinesis, Transit Gateway, VPC Peering.
• Implement IAM least privilege, SCPs, KMS, Secrets Manager, SSO & identity governance.
• Configure AWS-native security: WAF, Shield, GuardDuty, Inspector, Macie, CloudTrail, Config, Security Hub.
• Harden VPC architecture, subnets, routing, SG/NACLs, multi-account environments.
• Ensure encryption of data at rest/in transit across all cloud services.

2.     DevOps Security (IaC, CI/CD, Kubernetes, Linux)-

Infrastructure as Code & Automation Security:

• Secure Terraform, CloudFormation, Ansible with policy-as-code (OPA, Checkov, tfsec).
• Enforce misconfiguration scanning and automated remediation.

CI/CD Security:

• Secure Jenkins, GitHub, GitLab pipelines with SAST, DAST, SCA, secrets scanning, image scanning.
• Implement secure build, artifact signing, and deployment workflows.

Containers & Kubernetes:

• Harden Docker images, private registries, runtime policies.
• Enforce EKS security: RBAC, IRSA, PSP/PSS, network policies, runtime monitoring.
• Apply CIS Benchmarks for Kubernetes and Linux.

Monitoring & Reliability:

• Secure observability stack: Grafana, CloudWatch, logging, alerting, anomaly detection.
• Ensure audit logging across cloud/platform layers.

3.     MLOps Security (Airflow, EMR, Spark, Data Platforms, ML Pipelines)-

Pipeline & Workflow Security:

• Secure Airflow/MWAA connections, secrets, DAGs, execution environments.
• Harden EMR, Spark jobs, Glue jobs, IAM roles, S3 buckets, encryption, and access policies.

ML Platform Security:

• Secure Jupyter/JupyterHub environments, containerized ML workspaces, and experiment tracking systems.
• Control model access, artifact protection, model registry security, and ML metadata integrity.

Data Security:

• Secure ETL/ML data flows across S3, Redshift, RDS, Glue, Kinesis.
• Enforce data versioning security, lineage tracking, PII protection, and access governance.

ML Observability:

• Implement drift detection (data drift/model drift), feature monitoring, audit logging.
• Integrate ML monitoring with Grafana/Prometheus/CloudWatch.

4.     Network & Endpoint Security-

• Manage firewall policies, VPN, IDS/IPS, endpoint protection, secure LAN/WAN, Zero Trust principles.
• Conduct vulnerability assessments, penetration test coordination, and network segmentation.
• Secure remote workforce connectivity and internal office networks.

5.     Threat Detection, Incident Response & Compliance-

• Centralize log management (CloudWatch, OpenSearch/ELK, SIEM).
• Build security alerts, automated threat detection, and incident workflows.
• Lead incident containment, forensics, RCA, and remediation.
• Ensure compliance with ISO 27001, SOC 2, GDPR, HIPAA (as applicable).
• Maintain security policies, procedures, RRPs (Runbooks), and audits.

IDEAL CANDIDATE:

• 8+ years in DevSecOps, Cloud Security, Platform Security, or equivalent.
• Proven ability securing AWS cloud ecosystems (IAM, EKS, EMR, MWAA, VPC, WAF, GuardDuty, KMS, Inspector, Macie).
• Strong hands-on experience with Docker, Kubernetes (EKS), CI/CD tools, and Infrastructure-as-Code.
• Experience securing ML platforms, data pipelines, and MLOps systems (Airflow/MWAA, Spark/EMR).
• Strong Linux security (CIS hardening, auditing, intrusion detection).
• Proficiency in Python, Bash, and automation/scripting.
• Excellent knowledge of SIEM, observability, threat detection, monitoring systems.
• Understanding of microservices, API security, serverless security.
• Strong understanding of vulnerability management, penetration testing practices, and remediation plans.

EDUCATION:

• Master’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
• Relevant certifications (AWS Security Specialty, CISSP, CEH, CKA/CKS) are a plus.

PERKS, BENEFITS AND WORK CULTURE:

• Competitive Salary Package
• Generous Leave Policy
• Flexible Working Hours
• Performance-Based Bonuses
• Health Care Benefits

• 3+ years hands-on Azure cloud & automation experience.
• Experience managing high-availability enterprise systems.
• Microsoft Azure (AKS, VNets, App Gateway, Load Balancers).
• Kubernetes (AKS) & Docker.
• Networking (VPN, DNS, routing, firewalls, NSGs).
• Infra-as-Code (Terraform / Bicep optional).
• Monitoring tools: Azure Monitor, Grafana, Prometheus.
• CI/CD: Azure DevOps, GitLab/Jenkins (added advantage).
• Security: Key Vault, certificates, encryption, RBAC.
• Understanding of PostgreSQL/PostGIS networking.
• Design and manage Azure infrastructure (VMs, VNets, NSGs, Load Balancers, AKS, Storage).
• Deploy and maintain AKS workloads for NiFi, PostGIS, and microservices.
• Architect secure network topology including VNet peering, VPNs, Private Endpoints, DNS & Zero Trust policies.
• Implement monitoring and alerting using Azure Monitor, Log Analytics, Grafana & Prometheus.
• Ensure high uptime, DR planning, backup and failover strategies.
• Automate deployments with Azure DevOps, Helm, ArgoCD & GitOps principles.
• Enforce security, RBAC, compliance, and audit standards across environments.
• Good to have knowledge/experince in Linux administration (Ubuntu/Debian).

We seek a skilled and motivated Azure DevOps engineer to join our dynamic team. The ideal candidate will design, implement, and manage CI/CD pipelines, automate deployments, and optimize cloud infrastructure using Azure DevOps tools and services. You will collaborate closely with development and IT teams to ensure seamless integration and delivery of software solutions in a fast-paced environment.

Responsibilities:

• Design, implement, and manage CI/CD pipelines using Azure DevOps.
• Automate infrastructure provisioning and deployments using Infrastructure as Code (IaC) tools like Terraform, ARM templates, or Azure CLI.
• Monitor and optimize Azure environments to ensure high availability, performance, and security.
• Collaborate with development, QA, and IT teams to streamline the software development lifecycle (SDLC).
• Troubleshoot and resolve issues related to build, deployment, and infrastructure.
• Implement and manage version control systems, primarily using Git.
• Manage containerization and orchestration using tools like Docker and Kubernetes.
• Ensure compliance with industry standards and best practices for security, scalability, and reliability.

THE POSITION

Ashnik is looking for experienced technology consultant to work in DevOps team in pre-sales function. The primary area of focus will be Microservices, CI/CD pipeline, Docker, Kubernetes, containerization and container security. A person in this role will be responsible for leading technical discussions with customers and partners and helping them arrive at final solution.

QUALIFICATION AND EXPERIENCE

• Engineering or equivalent degree
• Must have at least 8 years of experience in IT industry designing and delivering solutions
• Must have at least 3 years of hand-on experience of Linux and Operating system
• Must have at least 3 years of experience of working in an environment with highly virtualized or cloud based infrastructure
• Must have at least 2 years hands on experience in CI/CD pipeline, micro-services, containerization and kubernetes
• Though coding is not needed in this role, the person should have ability to understand and debug code if required
• Should be able to explain complex solution in simpler ways
• Should be ready to travel 20-40% in a month
• Should be able to engage with customers to understand the fundamental/driving requirement

DESIRED SKILLS

• Past experience of working with Docker and/or Kubernetes at Scale
• Past experience of working in a DevOps team
• Prior experience in Pre-sales role

RESPONSIBILITIES

• Own pre-sales or sales engineering responsibility to design, present, deliver technical solution
• Be the point of contact for all technical queries for Sales team and partners
• Build full-fledged solution proposals with details of implementation and scope of work for customers
• Contribute in technical writings through blogs, whitepapers, solution demos
• Make presentations at events and participate in events.
• Conduct customer workshops to educate them about features in Docker Enterprise Edition
• Coordinate technical escalations with principal vendor
• Get an understanding of various other components and considerations involved in the areas mentioned above
• Be able to articulate value of technology vendor’s products that Ashnik is partnering with eg.  Docker, Sysdig, Hashicorp, Ansible, Jenkins etc.
• Work with partners and sales team for responding to RFPs and tenders

WHAT IS IN IT FOR YOU?

You would be adding a great experience of working with a leading open source solutions company in South East Asia region to your career. You would get to learn from the leaders and grow in the industry. This would be a great opportunity for you to grow in your career through continuous learning, adding depth and breadth of technologies. Since we work with leading open source technologies and engage with large enterprises, it creates enormous possibilities for career growth for our team. Not to mention that our people find the journey with Ashnik to be exciting and a fulfilling experience.

We are looking for an experienced DevOps engineer that will help our team establish DevOps practice. You will work closely with the technical lead ( and/or CTO ) to identify and establish DevOps practices in the company.

You will help us build scalable, efficient cloud infrastructure. You’ll implement monitoring for automated system health checks. Lastly, you’ll build our CI pipeline, and train and guide the team in DevOps practices.

Responsibilities

• Implement and own the CI.
• Manage CD tooling.
• Implement and maintain monitoring and alerting.
• Build and maintain highly available production systems.

Qualification- B.tech in IT

Requirements

• Design, write and build tools to improve the reliability, latency, availability and scalability of HealthifyMe application.

• Communicate, collaborate and work effectively across distributed teams in a global environment

• Optimize performance and solve issues across the entire stack: hardware, software, application, and network.

• Experienced in building infrastructure with terraform / cloudformation or equivalent.
• Experience with ansible or equivalent is beneficial
• Ability to use a wide variety of Open Source Tools
• Experience  with AWS is a must.
• Minimum 5 years of running services in a large scale environment.
• Expert level understanding of Linux servers, specifically RHEL/CentOS.
• Practical, proven knowledge of shell scripting and at least one higher-level language (eg. Python, Ruby, GoLang).
• Experience with source code and binary repositories, build tools, and CI/CD (Git, Artifactory, Jenkins, etc)
• Demonstrable knowledge of TCP/IP, HTTP, web application security, and experience supporting multi-tier web application architectures.

Look forward to

- Working with a world-class team.

- Fun & work at the same place with an amazing work culture and flexible timings.

- Get ready to transform yourself into a health junkie

Join HealthifyMe and make history!