DevSecOps

We’re Hiring | DevSecOps / Site Reliability Engineer (SRE)

• Location: Cairo
• Employment Type: Full-time (Onsite)
• Reports To: Head of Platform Engineering

Role Overview

We are seeking a highly skilled DevSecOps / SRE Engineer to strengthen our infrastructure reliability, security posture, and compliance automation.

The ideal candidate will have hands-on experience across the DevSecOps spectrum — infrastructure as code, observability, identity management, GitOps, and cloud-native security.

This role requires a deep understanding of secure system design, automation, and continuous improvement of SLAs and SLOs.

Key Responsibilities

• Design, implement, and maintain secure, scalable, and observable infrastructure using IaC tools such as Ansible and Terraform.
• Integrate and manage OAuth2/OIDC identity systems (preferably Keycloak) for secure authentication and authorization.
• Build and manage GitOps workflows using ArgoCD for automated and auditable deployments.
• Develop and maintain observability pipelines for logs, metrics, and traces using Grafana, Loki, Tempo, and Prometheus.
• Implement and monitor SLAs, SLOs, and SLIs to ensure reliability and system availability.
• Enforce and automate security governance through Policy as Code frameworks (Kyverno, OPA, Falco).
• Drive Compliance as Code initiatives, integrating continuous scanning and validation of configurations.
• Use tools like SonarQube and OWASP ZAP for continuous code and application security testing.
• Collaborate with development and operations teams to embed security and compliance into CI/CD pipelines.
• Contribute to IAM governance and ensure consistent enforcement of access and privilege management.
• Participate in incident response and root cause analysis to enhance reliability and security.

Required Qualifications

• Certified Kubernetes Security Specialist (CKS) is mandatory.
• Proven experience as a DevSecOps or SRE Engineer in production environments.
• Hands-on experience with:
• OAuth2/OIDC and Keycloak
• SonarQube, OWASP ZAP
• Grafana LGTM Stack (Loki, Grafana, Tempo, Mimir/Prometheus)
• ArgoCD and GitOps principles
• Ansible and Terraform
• Kyverno, Falco, or similar security enforcement tools
• Strong understanding of IAM, Governance, Policy-as-Code, and Compliance-as-a-Service.
• Familiarity with SLI/SLO/SLA design and tracking.
• Strong scripting skills (Bash, Python, or Go).
• Excellent communication and documentation skills.

Nice to Have

Experience with CIS Benchmarks, NIST, or ISO 27001 compliance automation.

Exposure to Service Mesh and Zero Trust Architectures.

Contributions to open-source DevSecOps or observability projects.

Job Type: Full-time

Pay: E£30,000.00 - E£55,000.00 per month

Application Question(s):

• Experience with CIS Benchmarks, NIST, or ISO 27001 compliance automation.
• Exposure to Service Mesh and Zero Trust Architectures.

Experience:

• DevSecOps / Site Reliability Engineer (SRE): 3 years (Required)

Language:

• English (Required)
• Arabic (Preferred)