DevOps Engineer contributing to tooling changes and leading a community of practice at Totara. Focused on collaboration, development, and support for internal teams.
About the role
- DevOps Engineer developing secure CI/CD pipelines for Java applications. Leading DevSecOps initiatives and optimizing build processes with a focus on security standards.
Responsibilities
- Secure CI/CD Pipeline Development: Design, implement, and maintain robust, automated, and secure CI/CD pipelines using Jenkins and other relevant tools. This includes integrating security scanning and testing tools into the pipeline.
- Secure Java Build Expertise: Optimize and troubleshoot Java application builds, ensuring security best practices (including dependency management, vulnerability scanning), artifact repository management (Nexus, Artifactory) and build performance.
- Secure Branching Strategy Management: Implement and maintain effective and secure branching strategies (e.g., Gitflow, Trunk-Based Development), ensuring secure collaboration between development teams and preventing unauthorized code merges.
- Infrastructure as Code (IaC) with Security: Leverage IaC tools (e.g., Terraform, CloudFormation, Ansible) to automate secure infrastructure provisioning, configuration, and management for our CI/CD environment. This includes implementing security policies and access controls in code.
- Secure Jenkins Pipeline Development with Groovy: Develop complex, efficient, maintainable, and secure Jenkins pipelines using Groovy scripting, that integrate testing, security code quality checks, and automated deployments. This includes the use of shared libraries for reusable pipeline logic.
- Shared Library Development: Develop and maintain reusable Jenkins shared libraries using Groovy to encapsulate common CI/CD logic, promoting consistency and maintainability across pipelines.
- Scripting and Automation for Security: Utilize scripting (Python, Bash, and Groovy) to automate repetitive tasks, enhance CI/CD workflows, integrate security tools, and create custom tools to improve development and security productivity.
- Monitoring and Logging with Security Focus: Implement secure monitoring and logging solutions to proactively identify and address potential security vulnerabilities, performance issues, and malicious behavior in the CI/CD pipelines.
- Security Collaboration: Collaborate closely with security teams, development teams, QA, and other stakeholders to understand their needs, deliver secure solutions, and participate in security reviews.
- Continuous Security Improvement: Continuously identify areas for improvement within our CI/CD processes and infrastructure from a security perspective, and implement security best practices to improve efficiency and reliability.
- Documentation with Security Focus: Create and maintain clear, comprehensive, and security focused documentation for all CI/CD processes, infrastructure, and security controls.
- Vulnerability and Security Assessment: Perform regular vulnerability assessments of the CI/CD infrastructure and application codebase to identify and fix potential weaknesses.
- Threat Modeling: Conduct threat modeling exercises to identify potential security risks in the CI/CD process.
- Troubleshooting with Security Awareness: Troubleshoot issues with the CI/CD pipeline, build processes, deployments, and other areas related to the build system, always with security as a key concern.
- Integrate QA automation tools and frameworks within the CI/CD pipeline, enabling automated testing of new builds.
- Stay up to date with Security: Stay abreast of industry trends and emerging DevOps and security technologies and practices.
Requirements
- Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent practical experience.
- 5+ years of experience as a DevOps Engineer, specializing in CI/CD and automation.
- Proven experience with implementing DevSecOps best practices in CI/CD pipelines.
- Strong proficiency in Java build processes, dependency management with Maven/Gradle, artifact repositories (Nexus, Artifactory) and experience with secure coding practices.
- Solid understanding of branching strategies, with the ability to implement security controls in branching.
- Extensive experience developing and maintaining complex Jenkins pipelines with built-in security checks, including declarative and scripted pipelines using Groovy.
- Proven experience developing and using Jenkins shared libraries using Groovy.
- Proven experience with infrastructure as code (Terraform, CloudFormation, Ansible) with a security focus.
- Excellent scripting skills in Python, Bash, and Groovy, with the ability to automate security tasks and integrate security tools into the workflows.
- Experience in implementing security scanning tools (e.g., SAST, DAST, SCA).
- Experience with monitoring and logging tools (e.g., Prometheus, Grafana, ELK) with a security perspective.
- Strong understanding of containerization technologies (Docker) and container orchestration (Kubernetes), including secure configurations.
- Experience with cloud platforms (AWS, Azure, GCP), including their security features.
- Excellent problem-solving, analytical, and troubleshooting skills, with a focus on security.
- Strong communication and collaboration skills.
- Experience working with security teams.
- Solid understanding of QA automation testing tools and frameworks.
- Additional Experience Desired:
- Experience with microservices architectures.
- Experience with security tools such as vulnerability scanners and penetration testing tools.
- Experience with secret management tools such as HashiCorp Vault.
- Experience with various testing frameworks and their integration into CI/CD pipelines with a focus on security.
- Familiarity with other programming languages (e.g., Go).
- Experience with GitOps and declarative configurations with security focus.
- Relevant certifications (e.g., AWS Certified DevOps Engineer, Certified Kubernetes Security Specialist (CKS)).
- Proficiency with Selenium or other automated testing tools.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Site Reliability Engineer responsible for infrastructure supporting AI platform. Safeguarding US customer data and ensuring compliance in the Aerospace and Defense sector.
Senior Infrastructure Engineer managing Azure platform for a SaaS product at Rillion. Focused on automation, security, reliability, and scalability in a hybrid work environment.
Statistician/Reliability Engineer applying statistical analysis for satellite systems at Aerospace Corporation. Leading projects on system reliability and working closely with interdisciplinary teams in a full - time on - site role.
DevOps Engineer designing and implementing solutions to optimize operations in media technology at Mediagenix. Collaborating with cross - functional teams to enhance user experiences.
Senior DevOps Engineer at SimCorp managing cloud environments and automating builds using Azure. Collaborating with cross - functional teams to ensure high service availability and compliance.
DevOps Senior Software Engineer at SimCorp developing high - quality software solutions for financial technology. Responsible for mentoring junior engineers and solving complex technical challenges.
DevOps Engineer designing, building, and operating software development infrastructure for CodeMettle. Leading automation and best practices to enhance value delivery across teams.
DevOps Engineer maintaining scalable infrastructure for VOX's telecom services. Implementing automation and CI/CD pipelines in a fast - paced environment with significant growth potential.
DevOps Engineer focused on designing and managing CI/CD pipelines using Azure DevOps. Collaborating with teams for application deployment and ensuring DevSecOps practices.