Senior DevOps Engineer

We are seeking a Senior DevOps Engineer with 10+ years of hands‑on experience designing, building, and operating enterprise‑grade CI/CD platforms across hybrid environments (AWS and on‑premises). This role will lead platform standardization, progressive delivery, reliability engineering, and security‑by‑design to enable high‑quality, low‑risk software delivery at scale.

CI/CD Platform & Environment Strategy

• Design, implement, and operate a standardized CI/CD framework supporting Dev, QA, PartnerLab, Staging, and Production
• Define promotion workflows with enforced quality gates and artifact immutability
• Establish PartnerLab as a dedicated integration and validation environment with no direct path to Production
• Ensure environment parity across AWS and on‑prem systems

Progressive Delivery & Release Engineering

• Implement feature flags, canary deployments, blue‑green deployments, and phased rollouts
• Enable automated rollback based on health checks, error rates, and SLO breaches
• Maintain full release traceability from commit through production

Test Automation & Quality Engineering

• Integrate unit, integration, regression, security, and performance testing into CI/CD pipelines
• Enforce automated quality gates before environment promotion
• Support manual validation workflows with controlled access, observability, and test artifacts

Database & Data Automation

• Automate database schema versioning, migrations, rollbacks, and validation
• Build lower‑environment refresh pipelines sourced from production data
• Enforce data masking and PII anonymization for non‑production environments
• Validate data integrity and consistency post‑refresh

Observability, Reliability & Operations

• Define and enforce observability standards across logs, metrics, and traces
• Implement service health dashboards, alerts, and incident signals
• Integrate deployment health into automated release decisions
• Support on‑call readiness, incident response, and post‑incident reviews

Security, Governance & Compliance

• Embed security scanning, secrets management, and access controls into pipelines
• Enforce least‑privilege IAM, credential rotation, and artifact integrity checks
• Align CI/CD workflows with enterprise change management and audit requirements

Cloud & Infrastructure

• AWS (mandatory): ECS, EKS, Lambda, RDS, IAM, CloudFormation, CloudWatch
• Hybrid infrastructure experience across on‑prem VMs, bare metal, and internal networks
• Terraform for modular, reusable, policy‑compliant infrastructure

CI/CD & Platform Engineering

• GitHub Enterprise & GitHub Actions (reusable workflows, templates, runners, environments)
• CI/CD orchestration across hybrid AWS and on‑prem topologies
• Artifact versioning, promotion, and immutability strategies

Containers & Orchestration

• Docker image design, optimization, and security hardening
• Kubernetes (EKS and on‑prem) deployment patterns, scaling, and lifecycle management
• Helm for deployment standardization

Testing, Release Safety & Analysis

• Automated testing frameworks (unit, integration, regression, performance)
• Static and dynamic analysis tools (code quality, security, dependency scanning)
• Feature flag platforms or equivalent internal capabilities

Database & Data Management

• Oracle and Microsoft SQL Server (mandatory)
• Schema migration tooling with automated rollback
• Data masking, anonymization, and controlled refresh automation

Observability & Reliability Engineering

• Metrics, logging, and tracing with Prometheus, Grafana, Splunk, New Relic, CloudWatch, OpenTelemetry, ELK
• SLO‑driven alerting and deployment health evaluation (e.g., Uptrends, PagerDuty)
• Automated failure containment and rollback strategies

Security & Secrets Management

• HashiCorp Vault, AWS Secrets Manager, or equivalent
• Secure pipeline design with controlled credential access
• Compliance‑ready logging, approvals, and traceability

• Experience in regulated or financial services environments
• Strong documentation, runbooks, and architectural communication
• Proven collaboration with application, infrastructure, security, and QA teams
• Comfortable operating in enterprise, onshore delivery models