The position reports to the Head of DevSecOps
Job Overview:
We are looking for a Senior DevSecOps Engineer to lead our infrastructure modernization. We are currently in a hybrid state—managing established applications (PHP/Java on VMs) while aggressively modernizing our CI/CD pipelines and observability stacks.
You will be the bridge between the old and the new. Your immediate focus will be migrating pipelines from Jenkins to GitLab Cloud, standardizing our security scanning, and maintaining stability across our Docker Swarm and RHEL environments.
Your work life:
- Pipeline Architecture & Migration: You will join the effort to migrate our CI/CD from Jenkins and self-hosted GitLab to GitLab Cloud. You will build modular pipeline templates that support both containerized apps and legacy direct-to-VM deployments (Write once, use everywhere).
- Security Integration (DevSecOps): You will operationalize our security tools, ensuring SonarQube and Gitlab Pipeline Security Scanning (SAST) and Docker Scout (Container Security) are effectively gating builds without slowing down development velocity.
- Observability Engineering: You will drive the observability culture by assisting developers to onboard their applications to OpenTelemetry (Otel) for metric and trace collection. You will also define and implement proper alerting and notification strategies to ensure stakeholders and support teams are notified of incidents in a timely manner.
- Platform Stability: You will maintain and optimize our Docker Swarm cluster and RHEL-based internal VMs across segmented networks (Dev, Staging, Prod), ensuring high availability for both modern and legacy workloads.
To be considered, you'll need:
- Seniority: 5+ years of hands-on experience in DevOps, SRE, or Infrastructure Engineering roles.
- CI/CD Expertise: Strong proficiency with GitLab CI (complex YAML, runners, templates). Experience migrating pipelines from Jenkins is a massive plus.
- Linux Deep Dive: You are a veteran of the command line. You understand RHEL/CentOS deeply, including permissions, systemd, firewalld, and debugging network issues in a segmented environment.
- Container Orchestration: Proven production experience with Docker Swarm or Kubernetes. We currently use Swarm as an interim solution, so you must be comfortable managing it today, but your Kubernetes expertise will be key as we explore a future migration.
- Legacy Sensitivity: You are comfortable supporting build pipelines for older runtimes (PHP 5.6 to 8, older Java frameworks). You understand the constraints of legacy code and prioritize stability over forced refactoring.
The Tech Stack
- CI/CD & Security: GitLab Cloud, Jenkins (legacy), SonarQube, Docker Scout, GitLab Security Scanners.
- Infrastructure & Orchestration: Docker Swarm, RHEL, Internal VMs.
- Observability: Grafana LGTM Stack (Loki, Tempo, Mimir), OpenTelemetry (Otel), Alloy.
Our Commitment to You
At Time, we believe great work deserves great support. Here's what you can look forward to when you join us:
- Comprehensive medical coverage for you and your immediate family, including outpatient care, hospitalisation, dental and optical benefits.
- Wellness support with an annual spending account for health-related needs, alternative treatments, or even paid-up premiums for personal insurance.
- Employee assistance during life's big moments, from celebrations to times of bereavement.
- Learning & growth opportunities through dedicated time for learning, access to LinkedIn Learning and rewards for upskilling.
- Cash rewards for recognised certifications and full reimbursement for up to two approved professional memberships each year.
*Only shortlisted candidates will be notified.
