<p><p><b>Job Description :</b></p><p><br/></p><p>We're seeking a Senior DevOps Engineer to design, build, and secure our cloud infrastructure.
You'll play a key role in delivering scalable, highly secure systems with a strong focus on Google Cloud and Azure Cloud, Kubernetes, automation, observability, and cloud security best practices.<br/><br/><b>Responsibilities : </b><br/><br/>- Design, deploy, and maintain secure and scalable Kubernetes clusters in production.</p><p><br/></p><p>- Develop and manage Helm charts for deploying applications securely.<br/><br/></p><p>- Implement GitOps workflows using ArgoCD, ensuring secure and auditable deployments.<br/><br/></p><p>- Set up and manage observability stacks, including Prometheus, Grafana, and Loki, for </p><p>monitoring, alerting, and logging.<br/><br/></p><p>- Implement security best practices, including network policies, RBAC, pod security standards, and secrets management in Kubernetes.<br/><br/></p><p>- Automate infrastructure provisioning and security compliance using Terraform, Ansible, or Pulumi.<br/><br/></p><p>- Secure cloud infrastructure and enforce security policies in GCP and Azure, focusing on IAM, encryption, VPC security, and firewall rules.<br/><br/></p><p>- Implement CI/CD pipelines with security scanning (SAST, DAST, container image scanning, and dependency management).<br/><br/></p><p>- Enhance system reliability, security, and performance through continuous monitoring, auditing, and automated remediation.<br/><br/></p><p>- Collaborate with development and security teams to ensure security and compliance in all </p><p>DevOps processes.<br/><br/></p><p>- Respond to security incidents, conduct forensic analysis, and apply remediation measures.<br/><br/><p><b>Requirements :</b></p><p><br/>- 6+ years of experience in DevOps, Site Reliability Engineering (SRE), or Cloud Engineering roles.</p></p><p><br/></p><p>- Strong expertise in Kubernetes security, including RBAC, network policies, pod security, and secrets management.<br/><br/></p><p>- Hands-on experience with Helm for secure and automated Kubernetes deployments.<br/><br/></p><p>- Proficiency in ArgoCD and GitOps methodologies for managing infrastructure as code securely.<br/><br/></p><p>- Experience with observability tools such as Prometheus, Grafana, and Loki.</p><p><br/></p><p>- Expertise in one or more cloud providers (AWS, Azure, or GCP), including IAM, VPC security, </p><p>and compliance.<br/><br/></p><p>- Strong knowledge of Terraform, Ansible, or Pulumi for infrastructure security automation.<br/><br/></p><p>- Experience securing CI/CD pipelines using SAST, DAST, container security scanning (Trivy, </p><p>Aqua, or Snyk).<br/><br/></p><p>- Proficiency in scripting languages like Bash, Python, or Go for security automation.<br/><br/></p><p>- Strong understanding of network security, firewall management, TLS, and certificate </p><p>management.<br/><br/></p><p>- Experience with logging, security monitoring, SIEM solutions, and automated alerting.<br/><br/><b>Bonus Points : </b><br/><br/>- Experience with Service Mesh security (Istio, Linkerd, or Consul).<br/><br/></p><p>- Hands-on experience with Zero Trust Security models and policy-as-code frameworks Knowledge of container runtime security using tools like Falco or Sysdig.<br/><br/></p><p>- Familiarity with SOC 2 HIPAA, or other compliance frameworks.<br/><br/></p><p>- Experience with incident response, forensic analysis, and security auditing.</p><br/></p> (ref:hirist.tech)