Advance proficiency in implementing and supporting Infrastructure as Code - proficiency in Terraform, Ansible etc., for managing complex, multi-region cloud environments
Expert level management of Kubernetes (EKS, AKS) including cluster hardening, service meshes, and custom controllers
Ability to design and scale self-healing pipelines using GitHub Actions, GiLab CI, or Jenkins for GitOps Workflows
Deep architectural knowledge of AWS, Azure specifically regarding cost optimization, compliance, security and high availability
Implementation of full stack telemetry using ELK stack, Grafana or Datadog to ensure proactive system health
Experience transitioning legacy monolithic architecture into scalable secure Microservices
Integration of automated security scanning (SAST/DAST) and compliance-as-code directly into the development lifecycle
Lead DevSecOps initiatives by automating vulnerability scanning, secret management (HashiCorp Vault), and IAM policy enforcement
Experience in working with CICD tools like Jenkins, GitHub, GitHub Actions, Articatory, SonarQube, Fortify, Blackduck, Xray, and AWS tools.
Proven track record of working with application engineering teams, conducting code reviews, and establishing internal "best practices. "
Excellent written and verbal communication skills.
Experience in mentoring and working with other team members in an Agile environment
Experience in working in a regulated environment with a Secure-SDLC and implementing check points and processes for building and deploying code within that regulated environment.
Qualifications desired:
Bachelor's degree or equivalent professional experience
Minimum 5 years in a DevOps or SRE role, with a track record of managing high -traffic production environments
Expert level proficiency in AWS and/or Azure
Deep expertise in Docker and Certified Kubernetes skills
Strong proficiency in Python, Go, or Ruby for creating custom automation tooling and APIs
Advanced understanding of Linux system administration, kernel tuning, and networking protocols (TCP/IP, HTTP/S, DNS)
Understanding of modern security practices, including SOC2 compliance, OIDC, and encryption at rest/transit