DevOps Engineer

Role Overview:

Experienced DevOps engineer who can own and scale production infrastructure end-to-end - from CI/CD and IaC to observability and incident response. You’ll lead design docs, harden reliability and security, drive cost/perf efficiency.

What You’ll Do

• Architect and maintain CI/CD pipelines (build, test, security scans, deploy, rollback) with quality gates and environment promotions.

• Design and operate container platforms (ECS/EKS or equivalent), service discovery, blue/green & canary strategies, and autoscaling.

• Implement Infrastructure as Code (Terraform/CDK/CloudFormation), enforce modular, reviewable, and drift-free infra.

• Build observability: metrics/logs/traces, SLOs/SLIs, dashboards, and actionable alerts; reduce MTTR through runbooks and automation.

• Champion platform reliability: capacity planning, HA/DR (multi-AZ), backup/restore testing, change management.

• Own secrets management, IAM least-privilege, network policies, and baseline hardening (CIS where relevant).

• Drive cost optimization (rightsizing, autoscaling policies, savings plans/spot, storage lifecycle) with monthly reporting.

• Establish release/incident processes (postmortems, RCAs) and lead remediation to cut change failure rate.

• Partner with Backend/AI/Frontend teams to productize models/services (GPU pools, batching, caching layers) and streamline developer workflows.

• lead design reviews, tech spikes, Monitoring and documentation.

Technical Qualifications

• 2-3+ years in DevOps/SRE/Platform roles supporting production systems at scale.

• Strong with AWS : VPC, IAM, ECS/EKS, ALB/NLB, RDS/Elasticache/Object storage, CloudWatch.

• Proficient in Terraform (or CDK/CloudFormation), CI/CD (GitHub/GitLab/Jenkins/Argo) including artifacts and environment promotion.

• Containers & orchestration: Docker, task definitions/helm charts, autoscaling, health checks, readiness/liveness.

• Observability: Prometheus/Grafana, OpenTelemetry, log pipelines (ELK/CloudWatch/Datadog), alert routing.

• Networking & security: VPC/Subnets, SGs/NACLs, TLS, DNS, WAF, IAM design, secrets (KMS/Parameter Store/Vault).

• Scripting/automation in Python/Bash, configuration management (Ansible or equivalent).

• Proven incident management: on-call practice, runbooks, RCAs, tuning alerts to reduce noise.

Nice to Have

• Kubernetes (EKS) production experience, service mesh (Istio/Linkerd), GitOps (ArgoCD/Flux).

• Image and dependency security (Trivy/Grype/Snyk), SBOMs, policy-as-code (OPA/Conftest).

• Data platform ops (Mysql/Postgres/PITR, replicas), streaming (Kafka/Kinesis).

• All the corresponding services in azure

Startup-Specific Expectations

• Be comfortable with ambiguity and a fast-paced, evolving environment.

• Proactively take on varied technical tasks outside your comfort zone.

• Help reduce operational toil via automation and smarter tooling.

• Contribute ideas on performance, cost savings, and process improvements.