4 Ckad Jobs

Position- Python Openstack (consultant) Exp- 5 to 8 years Location-Gurgaon Job Summary: We are seeking a skilled OpenStack and NFVI Engineer to design, implement, and manage cloud-based infrastructure solutions. The ideal candidate will have hands-on experience in deploying OpenStack environments and expertise in NFV, virtualization, and network functions. Key Responsibilities: Design, deploy, and maintain OpenStack-based private or hybrid cloud environments. Configure and optimize NFVI for high availability and performance to support VNFs (Virtualized Network Functions). Implement and manage virtualization technologies like KVM, VMware, or similar. Automate deployment, scaling, and maintenance using tools like Ansible, Terraform, or similar. Monitor and troubleshoot cloud infrastructure, ensuring minimal downtime and optimal performance. Collaborate with DevOps, network, and security teams to integrate OpenStack with CI/CD pipelines. Manage storage, compute, and network components of NFVI. Create documentation, including design specifications, operating procedures, and troubleshooting guides. Ensure compliance with industry standards for security and performance in NFVI environments. Required Skills and Qualifications: Technical Expertise: Strong experience with OpenStack architecture and services (Nova, Neutron, Cinder, Keystone, Glance, etc.). Knowledge of NFV architecture, ETSI standards, and VIM (Virtualized Infrastructure Manager). Hands-on experience with containerization platforms like Kubernetes or OpenShift. Familiarity with SDN (Software-Defined Networking) solutions such as OpenDaylight or Tungsten Fabric. Experience with Linux-based systems and scripting languages (Python, Bash, etc.). Understanding of networking protocols (e.g., VXLAN, BGP, OVS, SR-IOV). Knowledge of Ceph or other distributed storage solutions. Tools: Experience with monitoring and logging tools (Prometheus, Grafana, ELK Stack, etc.). Configuration management tools like Ansible, Puppet, or Chef. Proficiency in CI/CD tools (Jenkins, GitLab CI, etc.). Certifications (Preferred): OpenStack Certified Administrator (COA). Red Hat Certified Engineer (RHCE). VMware Certified Professional (VCP). Kubernetes certifications like CKA or CKAD. Soft Skills: Strong analytical and problem-solving skills. Excellent verbal and written communication. Ability to work collaboratively in a fast-paced environment.

Position Overview: The Site Reliability Engineer (SRE) will play a key role in building and managing Kubernetes platforms that support cloud-native applications and services. This position focuses on architecting and managing reliable, scalable, and secure Kubernetes-based platforms on AWS, ensuring high availability and performance while optimizing costs and automation. The ideal candidate will have hands-on experience with AWS infrastructure, Kubernetes platform creation, Helm charts, Karpenter scaling, and Istio service mesh. Key Responsibilities: Kubernetes Platform Creation: Design, implement, and maintain highly available, scalable, and fault-tolerant Kubernetes platforms. Ensure clusters are optimized for production workloads, providing high resilience and operational efficiency. AWS Infrastructure Management: Build, manage, and optimize AWS cloud infrastructure, including EKS,ECS, S3, VPCs, RDS, IAM, and more. Implement best practices for cost management, scaling, and security within AWS. Helm Management: Utilize Helm to automate and streamline the deployment of applications and services to Kubernetes clusters. Create, maintain, and manage Helm charts for production-ready deployments. Karpenter Implementation: Implement and manage Karpenter to dynamically scale Kubernetes clusters in response to workload demands. Istio Service Mesh Management: Configure and manage Istio to provide service-to-service communication, security, and observability within the Kubernetes clusters. Enable fine-grained traffic management, service discovery, and policy enforcement. Platform Automation & Scaling: Automate the deployment, scaling, and management of infrastructure and applications. Work with CI/CD pipelines to ensure a seamless flow from development to production with minimal downtime. Incident Management & Troubleshooting: Respond to incidents, troubleshoot, and resolve system issues related to performance, availability, and security in a timely and effective manner. Security & Compliance: Design and implement secure cloud infrastructure with appropriate access controls, network security, and compliance frameworks. Documentation & Knowledge Sharing: Create and maintain detailed documentation for Kubernetes platform setup, operational procedures, and best practices. Promote knowledge sharing across teams. Required Qualifications: 3+ years of experience with Kubernetes/ K8s, Helm,Karpenter,Istio; 5+ years of Experience with infrastructure-as-code tools like Terraform , Chef or Ansible 5+ years of Experience with serverless computing (AWS Lambda, API Gateway) and microservices architecture. Experience with multi-region cloud environments. Proven experience with AWS (EC2, RDS, S3, CloudFormation, IAM, etc.) and solid understanding of cloud-native architectures. Strong expertise in Kubernetes platform creation , management, and optimization (e.g., setting up highly available clusters, networking, and storage). Hands-on experience with Helm for Kubernetes application deployment and management. Practical experience with Karpenter for dynamic scaling of Kubernetes clusters and optimizing resource usage.Expertise in managing and securing Istio for service mesh, including traffic management, security, and observability features. Proficiency in CI/CD pipelines and automation tools (e.g., Jenkins, GitLab, CircleCI, Terraform, Ansible, Spinnaker).Strong scripting and automation skills in Python , Bash , or Go for infrastructure management and platform automation. Experience with monitoring, logging, and alerting tools such as Prometheus , Grafana , CloudWatch , and ELK Stack . Preferred Qualifications: Understanding of security best practices for cloud platforms and Kubernetes (e.g., role-based access control (RBAC), encryption, and compliance frameworks). Familiarity with Docker and containerization principles. Bachelor s degree in Computer Science, Engineering, or related field (or equivalent professional experience). Certifications (Preferred): CKA (Certified Kubernetes Administrator), CKAD (Certified Kubernetes Application Developer), or AWS Certified DevOps Engineer are highly desirable.

What You ll Be Doing: Lead and implement secure, scalable Kubernetes clusters across on-prem, hybrid, and cloud environments. Integrate security throughout the cluster lifecycle (design to production) with network policies, RBAC, Pod Security Policies, and encryption. Work with development teams to enforce secure containerization practices and integrate security tools into CI/CD pipelines. Implement secure networking, service meshes (Istio, Linkerd), and implement mutual TLS for secure service-to-service communication. Secure CI/CD pipelines with automated security checks (code scanning, vulnerability assessments, configuration checks). Automate Kubernetes infrastructure provisioning with IaC tools (Terraform, CloudFormation, Ansible), embedding security best practices. Enhance automation workflows for patching, vulnerability assessments, and incident response. Implement observability strategies with Prometheus, Grafana, ELK Stack, and Loki for monitoring health, logging, performance, and security. Ensure security events are logged, monitored, and proactively mitigated. Participate in incident response, on-call rotations, root cause analysis, and post-incident reviews to refine security protocols. Define, document, and enforce Kubernetes security best practices and policies. What You ll Bring to the Role: Strong knowledge in Kubernetes, ECS, and migrating applications to cloud-native environments, ensuring security at every stage. Experience in designing secure identity management and access control solutions for Kubernetes, ECS, and cloud platforms. Experience in migrating legacy applications to Kubernetes and ECS, optimizing for security and scalability. Skilled in managing and securing cloud identities, roles, and implementing RBAC in Kubernetes and ECS. Extensive experience in securing and automating CI/CD pipelines with tools like Jenkins, GitLab CI, ArgoCD, and Spinnaker. Hands-on experience with container security using tools like Aqua Security, Twistlock, and runtime protection practices. In-depth understanding of service meshes like Istio and Linkerd, and securing communications with mutual TLS encryption. Expertise in using IaC tools like Terraform, CloudFormation, and Ansible for secure infrastructure automation. Skilled in using Prometheus, Grafana, and ELK Stack for real-time monitoring and proactive incident detection. Experience in managing incidents, troubleshooting, root cause analysis, and improving security protocols. Strong ability to collaborate with cross-functional teams and mentor junior engineers, promoting a security-first culture. Knowledge on secrets in Kubernetes using Vault, Secrets Manager, or Kubernetes Secrets. Experience & Qualifications: 5+ years of experience in managing large-scale, secure Kubernetes clusters, including architecture, security, and scalability. 5+ years of hands-on experience with ECS (Elastic Container Service) and migrating legacy monolithic applications to cloud-native environments (Kubernetes/ECS). 3+ years of experience in cloud security, including IAM (Identity and Access Management), role-based access control (RBAC), and secure identity management for cloud platforms and Kubernetes. 3+ years of experience in automating CI/CD pipelines using tools such as Spinnaker, Jenkins or ArgoCD with an emphasis on integrating security throughout the process. Strong knowledge of service mesh technologies (Istio, Linkerd) and secure networking practices in Kubernetes environments, including mutual TLS encryption. Experience with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, or Ansible, and the ability to automate infrastructure provisioning with a security-first approach. Proven experience in implementing monitoring and observability solutions with Prometheus, Grafana, Loki or similar tools to enhance security and detect incidents in real-time. Strong problem-solving skills with hands-on experience in incident management, troubleshooting, and conducting post-incident analysis. Excellent collaboration skills with experience working cross-functionally with security engineers, developers, and DevOps teams to enforce security best practices and policies. Bachelor s degree in Computer Science, Engineering, or a related field, or equivalent professional experience. Certifications (preferred): CKA (Certified Kubernetes Administrator), CKAD (Certified Kubernetes Application Developer), AWS Certified DevOps Engineer, or equivalent certifications in cloud and security domains.

Key Responsibilities : - Lead Automation : Design and implement an automation framework to migrate workloads to Kubernetes platforms such as AWS EKS, Azure AKS, Google GKE, Oracle OKE, and OpenShift. - Develop Cloud-Native Automation Tools : Build automation tools using Go (Golang) for workload discovery, planning, and transformation into Kubernetes artifacts. - Migrate Kubernetes Across Cloud Providers : Plan and execute seamless migrations of Kubernetes workloads from one cloud provider to another (AWS - Azure, GCP - OCI, etc.) with minimal disruption. - Leverage Open-Source Technologies : Utilize Helm, Kustomize, ArgoCD, and other popular open-source frameworks to streamline cloud-native adoption. - CI/CD & DevOps Integration : Architect and implement CI/CD pipelines using Jenkins (including Jenkinsfile generation) and cloud-native tools like AWS CodePipeline, Azure DevOps, and GCP Cloud Build to support diverse Kubernetes deployments. - Security & Compliance : Define and enforce security best practices, implement zero-trust principles, and proactively address vulnerabilities in automation workflows. - Technical Leadership & Mentorship : Lead and mentor a team of developers, fostering expertise in Golang development, Kubernetes, and DevOps best practices. - Stakeholder Collaboration : Work closely with engineering, security, and cloud teams to align modernization and migration efforts with business goals and project timelines. - Performance & Scalability : Ensure high performance, scalability, and security across automation frameworks and multi-cloud Kubernetes deployments. - Continuous Innovation : Stay ahead of industry trends, integrating emerging tools and methodologies to enhance automation and Kubernetes portability. Qualifications & Experience : - Education : Bachelor's or Master's degree in Computer Science, Engineering, or a related field (or equivalent experience). - Experience : 8+ years in software development, DevOps, or cloud engineering, with 3+ years in a leadership role. - Programming Expertise : Strong proficiency in Go (Golang), Python for building automation frameworks and tools. - Kubernetes & Containers : Deep knowledge of Kubernetes (K8s), OpenShift, Docker, and container orchestration. - Cloud & DevOps : Hands-on experience with AWS, Azure, GCP, OCI, self-managed Kubernetes, OpenShift, and DevOps practices. - CI/CD & Infrastructure-as-Code : Strong background in CI/CD tools (Jenkins, Git, AWS CodePipeline, Azure DevOps, GCP Cloud Build) and Infrastructure-as-Code (IaC) with Terraform, Helm, or similar tools. - Kubernetes Migration Experience : Proven track record in migrating Kubernetes workloads between cloud providers, addressing networking, security, and data consistency challenges. - Security & Observability : Expertise in cloud-native security best practices, vulnerability remediation, and observability solutions. - Leadership & Communication : Proven ability to lead teams, manage projects, and collaborate with stakeholders across multiple domains. Preferred Skills & Certifications : - Experience in self-managed Kubernetes provisioning (e.g., kubeadm, Kubespray) and OpenShift customization (e.g., Operators). - Industry Certifications - CKA, CKAD, or cloud-specific credentials (e.g., AWS Certified DevOps Engineer). - Exposure to multi-cloud and hybrid cloud migration projects