Job
Description
As a DevSecOps engineer, work on setting up service infrastructure and ensuring their availability, reliability, security and compliance.Manage the full lifecycle of code changes from development to deployment, including code review,, testing and operations.Use of various open-source tools for instrumenting, monitoring, alerting, and debugging of production services.Participate in on-call rotations along with the other members of the team to maintain the uptime of our services out of hours.Participate in architectural discussions and help drive the future of our services as we continually strive to provide best-in-class experiences for IBM development teams.Stay abreast of the latest technologies and methodologies with high focus on Cloud infrastructure (VPC, Kubernetes/OpenShift, Istio, Akamai, Gateways etc)Provide exceptional end-user support, collaborating with development teams to understand their needs and optimize their build processes.Participate in activities involving evidence collection for operational controls, as part of Audits (SOC2, ISO, GDPR etc)Build automation required to gather artefacts necessary to assess security and operational controls
Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Minimum 6+ years of experience in Cloud environment in the role of DevOpsFamiliarity with continuous integration & continuous deployment tools and strategies.Experience with Infrastructure as Code (Terraform).Demonstrated experience working with Cloud infrastructure (VPC, Kubernetes/OpenShift, Istio).Understanding of endpoint security best practices (TLS, HTTPS, TLS Certificates, WAF, Network Traffic Analysis)Proficient in any one of the high-level programming language such as Python, JavaScript, Java, or Go.Desire to design, build, and maintain highly efficient, secure and scalable software build systems.Demonstrated skills with troubleshooting, debugging, maintaining and improving existing software.Experience working with any version control system (Git preferred).Experience working with and configuring Security and Compliance tooling for source and image vulnerability management, runtime security posture assessment etc (SAST/DAST scans, container image vulnerability scanner etc), knowhow of security controls (NIST) and its applicability to Cloud ServicesExcellent analytical and problem-solving abilities, with a keen attention to detail.Excellent verbal and written communications skills.Certified Kubernetes Administrator Certification (CKA)
Preferred technical and professional experience Knowledge of IBM Cloud services and management, with an emphasis on deploying and scaling applications in a cloud environmentExperience using cloud-native systems for monitoring and alerting (e.g. Prometheus, Grafana, Kafka)Solid foundation in Linux internals, including system calls, file systems, and kernel debuggingUnderstanding of networking principles and protocolsKnowledge of security testing techniques to identify vulnerabilities in software and infrastructure.Genuine interest in building efficient and highly performant softwareAbility to quickly learn new technologies and adapt to changing technical environments
