THE ROLE & RESPONSIBILITIES
We are seeking a skilled DevOps Engineer with a strong specialization in CI/CD pipeline engineering to join our platform team. You will own the design, implementation, and continuous improvement of our software delivery pipelines, working closely with development teams to accelerate release velocity, enforce quality gates, and embed security into every stage of the delivery lifecycle. Beyond pipelines, you will contribute to container platform operations, infrastructure automation, and observability tooling — ensuring our systems are reliable, repeatable, and developer-friendly.
REQUIREMENTS & QUALIFICATIONS
Must-Have
- 4+ years in DevOps/Platform/SRE engineering
CI/CD Pipeline Design & Engineering (Primary Focus)-
- Design, build, and maintain CI/CD pipelines using Jenkins — applying pipeline-as-code best practices throughout.
- Create reusable, parameterised workflow templates and shared library components to standardise delivery patterns across multiple teams and repositories.
- Implement multi-stage pipelines covering: source checkout, dependency caching, unit & integration testing, static code analysis, container image build, vulnerability scanning, artifact publishing, and environment promotion.
- Configure and manage artifact Harbor repositories including image tagging strategies, retention policies, and promotion gates.
- Own branch protection rules, merge gates, and approval workflows that enforce quality standards without blocking developer velocity.
- Integrate automated testing into pipelines: unit tests, integration tests, API contract tests, and end-to-end smoke tests — with clear failure triage and alerting.
Security Integration (Shift-Left / DevSecOps)
- Embed security scanning into every pipeline: SAST (SonarQube), dependency audits ( Dependabot), and container image scanning (Trivy), DAST (Appscan), 3rd party source code scanning (MEND)
- Implement IaC security scanning on Helm manifests before every apply.
- Enforce signed container images and attestation workflows using Cosign/Sigstore for supply chain integrity.
- Manage secrets lifecycle using cloud-native secrets managers (AWS Secrets Manager, GCP Secret Manager, Azure Key Vault).
Container & Kubernetes Operations
- Build, optimise, and maintain production-grade Dockerfiles; enforce multi-stage build patterns and minimal base image standards.-
- Author and maintain Helm charts for application deployments; manage chart versioning, values overrides, and upgrade lifecycles.
Infrastructure as Code & Automation
- Manage environment parity across dev and staging environments, manage IT infrastrucure and variable injection from pipelines.
- Build internal tooling and scripts (Bash/Python) to automate routine operational tasks, pipeline triggers, and environment teardowns.
Collaboration & Developer Experience
- Partner with software engineers to onboard applications onto standardised pipelines — acting as a DevOps advocate and embedded advisor.
- Document pipeline standards, CI/CD runbooks, and architecture decision records (ADRs) for team-wide adoption.-
- Review infrastructure and pipeline code in PRs; provide constructive feedback aligned to security, performance, and maintainability.
- Contribute to sprint planning and backlog grooming, representing DevOps capacity and platform improvements.
