Job Description
Role Title: DevOps Lead (L2/L1) & GitHub Subject Matter Expert (SME)
Work Location: Chennai (Hybrid Model)
Experience Required: 5 to 8 Years DevOps Lead (L2/L1) & 8 + Yrs Github SME (L3/L4)
Role Overview
We are seeking a highly skilled and security-focused GitHub Subject Matter Expert (SME) to lead the modernization, security, and consolidation of enterprise code repositories onto the GitHub Enterprise Cloud platform.
The selected individual will serve as the technical authority for GitHub architecture, governance, policy enforcement, and integration with enterprise systems, driving transformation initiatives aligned with DevSecOps best practices.
Key Responsibilities
1. Enterprise Identity and Access Management (IAM)
- Design and implement migration from existing SSO to Enterprise Managed Users (EMU) for centralized user lifecycle management.
- Lead IdP integration (Azure AD / Google Workspace) to enable secure SSO and MFA.
- Define and enforce Role-Based Access Control (RBAC) aligned with the principle of least privilege.
- Establish and govern Personal Access Token (PAT) policies, ensuring fine-grained permissions and short-lived tokens.
2. Repository Migration and CMDB Integration
- Identify, catalogue, and migrate repositories across the enterprise to GitHub Enterprise Cloud.
- Integrate GitHub repository metadata with the Configuration Management Database (CMDB) for real-time visibility and reporting.
3. Code Security and Secret Management
- Implement and manage GitHub Secret Scanning across repositories to detect embedded credentials.
- Enforce Push Protection to prevent sensitive data from being committed.
- Lead vulnerability analysis and coordinate remediation, migrating valid secrets to approved vaulting solutions.
4. API Security and Incident Response
- Conduct API security reviews across Apigee, Microsoft Graph, and Azure API Gateway using CodeQL analysis.
- Perform detailed security code reviews to identify and mitigate vulnerabilities.
- Act swiftly on security incidents to identify and remediate impacted repositories.
5. Customer and Developer Support
- Provide technical and administrative support for development teams.
- Ensure adherence to enterprise security standards and compliance requirements.
Required Skills and Qualifications
- Extensive experience administering and governing GitHub Enterprise Cloud environments.
- Expertise in SAML SSO, SCIM, and IdP integration (Azure AD / Google Workspace).
- Proven experience with EMU setup and migration lifecycle.
- Strong scripting proficiency (Python, Bash) for automation using GitHub Actions/Workflows.
- Sound understanding of API security principles (OAuth, scopes, token usage).
- Experience reviewing and securing integrations across platforms like Apigee and Microsoft Graph.
Good to Have
- Experience as an Azure DevOps Administrator.
Soft Skills
- Strong analytical and problem-solving abilities.
- Excellent communication skills with the ability to convey technical details to both engineers and senior stakeholders.
- Strategic mindset with a focus on process improvement and governance.
Certification (Mandatory)
- GitHub Certified Administrator
(Equivalent enterprise security or identity management certifications will be considered an advantage.)
