DevOps Engineer*

Posted on May 21, 2025

Apply Now

Job Description

  • *Share Only Bench Candidates*
  • *Position: DevOps Engineer*
  • *Location : Remote*
  • *Experience: 4 + Years Experience*
  • *(Primary cloud ? Google Cloud Platform � Secondary ? AWS-style on-prem / hybrid)*
  • *Client: Confidential*
  • *JD*
  • *Key Responsibilities*
  • 1.Cloud Infrastructure (GCP-first)
  • o Design, provision and operate production workloads on Compute Engine, GKE, Cloud SQL, VPC, Cloud DNS, Cloud Load Balancing, Pub/Sub, Cloud KMS.
  • o Apply cost-optimisation and high-availability patterns.
  • o Implement least-privilege IAM across projects and service accounts.
  • 2.Infrastructure as Code (IaC)
  • o Build and maintain reusable Terraform modules (remote state, workspaces, module versioning).
  • o Automate host / application configuration with Ansible (Chef/Puppet familiarity is a plus).
  • 3.CI/CD & DevSecOps
  • o Create end-to-end pipelines from scratch using Bitbucket Pipelines, Jenkins or GitHub Actions.
  • o Integrate unit & integration tests, SAST/DAST, container-image scanning (Trivy / Anchore), image signing, approval gates and environment promotion.
  • *4.Kubernetes & Containers*
  • o Containerise applications with Docker; write secure, efficient images.
  • o Manage the full GKE lifecycle: Secrets, ConfigMaps, Ingress, HPA/VPA, node-pool tuning.
  • o Package releases with Helm or Kustomize.
  • o Bonus: implement GitOps workflows with Argo CD or Flux.
  • *5.Observability & Incident Response*
  • o Deploy Prometheus + Grafana (or Cloud Monitoring) and build actionable dashboards / alerts (latency, errors, saturation).
  • o Implement structured logging and distributed tracing (Cloud Logging/Trace, OpenTelemetry).
  • o Configure error-tracking with Sentry (or equivalent).
  • 6.Linux & Networking
  • o Advanced Ubuntu / RHEL administration: hardening, patching, systemd, kernel & GRUB tuning.
  • o Write and debug custom Nginx / Apache configs, TLS termination, reverse proxying.
  • o Design VPCs, subnets, firewalls, VPN / Interconnect, DNS records.
  • 7.Security & Compliance
  • o Enforce RBAC via IAM; manage service-account keys and Workload Identity.
  • o Implement secret management, encryption in transit / at rest, container-image scanning and policy-as-code.
  • Preferred / Nice-to-Have
  • ?Service-mesh & zero-trust networking (Istio, Linkerd, BeyondCorp patterns)
  • ?Cost monitoring & optimisation (GCP Cost Explorer, rightsizing, budgeting alerts)
  • ?Multi-cloud / hybrid exposure (AWS or on-prem VMware/OpenStack)
  • ?Kubernetes operators & progressive delivery (Argo Rollouts, Percona/Crunchy operators, KEDA)
  • ?Extended observability stack (Loki, Tempo, Jaeger)

Required Skills

1.cloud infrastructure (gcp-first) o design provision and operate production workloads on compute engine gke cloud sql vpc cloud dns cloud load balancing pub/sub cloud kms. o apply cost-optimisation and high-availability patterns. o implement least-privilege iam across projects and service accounts. 2.infrastructure as code (iac)