DevOps Engineer

TalentBridge • Contract • Remote (Atlanta, GA, US) • 1d ago

DevOps & DevSecOps Engineer

About the Role

We are looking for a hands-on DevOps & DevSecOps Engineer to own, improve, and secure the infrastructure that powers multiple products across our organization, including backend APIs, blockchain nodes, mobile/web delivery pipelines, and data pipelines. You will work across distinct tech stacks and product teams, embedding security into every layer of the SDLC while keeping our AWS-centric environments reliable, observable, and cost-efficient.

Core Responsibilities

Infrastructure & Cloud (AWS)

Design, provision, and manage AWS services: EC2, RDS (PostgreSQL), ECS/EKS, Lambda, CloudWatch, SNS, SES, S3, VPC, IAM, and ALB.
Maintain and scale blockchain node infrastructure (CosmWasm & Ethereum) hosted on AWS.
Ensure high availability, fault tolerance, and cost optimization across all environments.

CI/CD & Automation

Own and evolve CI/CD pipelines across multiple product stacks: NestJS, Next.js, .NET/C#, Angular, and Flutter.
Implement blue-green / canary deployments and rollback strategies.
Automate infrastructure provisioning via Terraform or AWS CDK; enforce IaC best practices.
Manage environment config and secrets (AWS Secrets Manager, etc.).

Security (DevSecOps)

Embed security gates into CI/CD: SAST, DAST, dependency scanning (Snyk / Dependabot), and container image scanning.
Manage IAM roles, policies, and least-privilege access across AWS accounts and Firebase.
Conduct periodic threat modelling, pen-test coordination, and remediation tracking.
Enforce network security: WAF, Security Groups, NACLs, VPN, and TLS everywhere.
Ensure GDPR / data-privacy compliance posture; manage audit logging and evidence collection.
Respond to and lead post-mortems for security incidents.

Observability & Reliability

Maintain and expand Datadog dashboards, APM traces, log pipelines, and alerts.
Configure CloudWatch metrics and alarms as a secondary observability layer.
Define and track SLOs/SLAs; own on-call runbooks and incident response playbooks.

Firebase & Third-Party Services

Manage Firebase project configuration: Auth, Remote Config, FCM, and service account security.
Oversee AWS SNS (SMS/push) and AWS SES (email) deliverability and quotas.
Coordinate Sentry project setup and alert routing for web (Next.js) and mobile (Flutter).

Required Qualifications

4+ years of DevOps/infrastructure engineering experience in a production cloud environment.
Deep AWS expertise; EC2, RDS, ECS or EKS, IAM, VPC, CloudWatch, S3, SNS, SES, etc.
Strong CI/CD experience with GitHub Actions (or equivalent) for polyglot stacks (TypeScript, .NET/C#, Dart, etc.).
Infrastructure-as-Code proficiency: Terraform and/or AWS CDK.
Security fundamentals: OWASP Top 10, CVE triage, secrets management, TLS/PKI.
Working knowledge of Docker and container orchestration (ECS Fargate or Kubernetes).
Linux administration and Bash/Python scripting for automation.
Experience with log aggregation and APM tooling (Datadog, CloudWatch, or similar).

Nice to Have

Experience running blockchain nodes (CosmWasm / Cosmos SDK, Ethereum / Geth).
AWS security certifications (AWS Security Specialty, Solutions Architect).
Ingest or equivalent background job / event-driven workflow operations experience.
SOC 2, ISO 27001, or GDPR compliance programmer experience.
Familiarity with Flutter CI pipelines (Fastlane, Codemagic, or GitHub Actions matrix builds).
Cloudinary advanced configuration (upload presets, transformations, access control).
Familiarity with TypeScript-based backend frameworks (NestJS), frontend frameworks (Next.js, React, etc.) and Flutter to better understand deployment and security (e.g., React2Shell) needs.
Experience with .NET/C# ecosystems, Entity Framework, and Angular deployment pipelines.
Working knowledge of MySQL administration alongside PostgreSQL.
Experience with Atlas (atlasgo.io) for database schema management and migrations.
Familiarity with in-memory caching layers (Redis, Memcached, or similar).

Apply