Senior Devops Engineer

JOB SUMMARY

We are seeking a highly skilled Sr. DevOps Engineer to join our operations and security engineering team and help design, build and operate reliable, scalable, and secure cloud and on-prem infrastructure. This role is DevOps-first, with a strong emphasis on automation, CI/CD and platform reliability, while working closely with Security (SecOps) to ensure security is embedded naturally into every stage of the SDLC and operations workflows.

You will partner with application engineering, security and operations teams to enable high-velocity software delivery, resilient systems, and well-architectured infrastructure across cloud and on-premise environments. You may also serve as a technical advisor on infrastructure, networking, and security design, helping teams make pragmatic, scalable decisions.

Key Responsibilities:

Core DevOps - Automation, CI/CD & Infrastructure as Code (Primary Focus)

• Build and optimize CI/CD pipelines using Bitbucket, GitHub Actions, GitLab CI, Jenkins, Cloud Build or cloud-native tooling.
• Automate cloud infrastructure provisioning using Terraform, Helm, Kubernetes Operators, or Crossplane.
• Develop automation for operational activities using Python, Go, or Bash, promoting reusable and modular code.

Cloud & Container Platform Engineering

• Design, secure, and operate Google Cloud Platform (GCP) environments (Compute Engine, GKE, Cloud SQL, Cloud Storage, VPC, IAM, Pub/Sub, Cloud Build, Cloud Run).
• Manage multi-environment Kubernetes clusters across dev, QA, staging, and production.
• Implement and maintain service mesh (Istio/Linkerd), API gateways, ingress controllers, and workload identity protections.
• Build internal platform tooling aligned with platform engineering best practices, self-service deployments, golden paths, reusable blueprints.

Security Integration & Governance

• Integrate security-as-code into CI/CD using tools such as Snyk, Trivy, GitLab/GitHub Advanced Security, Checkov, OPA, or Aqua.
• Implement supply chain security controls including SBOM generation, dependency scanning, secrets scanning, signed artifacts, and CI/CD hardening.
• Lead threat modeling, secure design reviews, automated code scanning, and periodic penetration testing.
• Manage and improve Zero Trust security controls, identity and access policies, secrets management (Vault, Google Secrets Manager), and workload identity.

Data Center Operations, Security & Compliance

• Administer and harden Linux and Windows server environments, covering OS provisioning, patching
• Performance tuning, certificate management, and vulnerability remediation.
• Implement and maintain backup and disaster recovery solutions, including backup policies, replication, restore testing, and RPO/RTO compliance.
• Deploy and enforce Zero Trust security architectures within the data center, including network segmentation, identity-based access controls, MFA integration, and secure application exposure.
• Manage email infrastructure and external vendors, handling technical escalations, SLA adherence, capacity planning, licensing, and security compliance.

Observability, Monitoring & Reliability

• Implement full-stack observability solutions using Prometheus, Grafana, Elastic, OpenTelemetry, Datadog.
• Improve logging, tracing, metrics, SLO/SLI dashboards, and alerting playbooks.
• Perform performance tuning, root-cause analysis, and increase system resilience via automation, chaos testing, and runbook improvements.

AI-Enabled DevOps

• Leverage AI/ML-assisted operations such as anomaly detection, predictive scaling, log intelligence, and automated remediation platforms.
• Integrate AI tools to improve CI/CD testing, code scanning, and vulnerability management workflows.

Advisory & Cross-Team Collaboration

• Act as a bridge between Engineering, Security, Compliance, and Operations teams.
• Provide technical guidance during architecture design, code deployments, and cloud migrations.
• Participate in on-call rotation and help drive post-incident reviews and reliability improvements.

What you'll need:

• Bachelor's degree in Computer Science, Engineering, Information Systems, or equivalent experience.
• 10+ years of experience in DevOps, cloud engineering, systems engineering, or security engineering.
• Proficiency with modern scripting/programming: Python, Go, Bash, or equivalent.
• Strong experience with Kubernetes, container orchestration, Docker, and cloud-native deployments.
• Hands-on experience with GCP, or other major clouds (AWS/Azure) with willingness to specialize in GCP.
• Deep knowledge of Terraform, Helm, or other IaC and GitOps tools (ArgoCD, Flux).
• Understanding of microservices architectures, API security, and distributed systems.
• Familiarity with security frameworks (OWASP ASVS, NIST, CIS, ISO 27001).
• Direct experience with vulnerability management, container scanning, SBOMs, secret management.
• Experience with identity and access management, Zero Trust models, and cloud security posture management (CSPM).
• Experience with Cloudflare, IAM, vulnerability management, and modern security frameworks.
• Strong background in CI/CD automation, configuration management, cloud networking, and system performance tuning.
• Experience with monitoring, observability, and SRE practices.
• Ability to troubleshoot complex issues spanning app code, infra, networking, CI/CD, and security layers.

Nice-to-Have Qualifications:

• Relevant certifications a plus (GCP Professional Cloud Engineer, Kubernetes CKAD/CKA, Security+ / CISSP / GIAC / OSCP)

If you are a highly motivated and results-driven individual, with a passion for driving growth in a fast-paced, entrepreneurial environment, we encourage you to apply for this exciting opportunity. We offer a competitive salary, comprehensive benefits package, and a dynamic work culture that values collaboration, innovation, and personal development.

Base Compensation: $147,000 - $165,951