Senior Adobe Experience Manager DevOps Engineer ( AEM DevOps )
About The Position
The Technology, Data, and Insights (TDI) team is on a mission to accelerate Okta’s scale. We are a group of innovative AEM DevSecOps engineers who prioritize security, reliability and automated compliance across our AEM infrastructure. We touch every weekly release cycle, and we are obsessed with creating a seamless, cutting-edge platform experience for every Okta customer and business user. As a Senior AEM DevSecOps Engineer, you will oversee and automate our AEM infrastructure with a primary focus on security, reliability, and automated compliance. You will bridge the gap between development and operations by embedding security directly into the CI/CD pipeline and managing complex identity and content delivery architectures. Your role is pivotal in ensuring that our platform is not only high-performing but resilient against modern threats like DDoS attacks.
Requirements
- 5+ years in administering and securing AEM environments.
- Strong understanding of Headless CMS security best practices, including API key management and JWT authentication.
- Expertise in managing CDNs and implementing DDoS mitigation and WAF rules.
- Proficiency in Apache Sling, JCR, OSGi, and web servers like Nginx or Apache.
- Hands-on experience with scripting (Python) and CI/CD tools (Jenkins, CircleCI) to automate security and deployment workflows.
- Experience with cloud-based AEM implementations, such as AEM as a Cloud Service (AEMaaCS) or AWS/Azure.
- Proficiency in analyzing log files, thread dumps, and heap dumps to resolve security incidents or performance outages.
Nice To Haves
- Oversee the security of AEM Headless deployments, including protecting GraphQL endpoints, managing CORS policies, and ensuring secure communication for decoupled front-end frameworks (React/Angular).
- Proven experience integrating Vercel Cloud with AEM cloud.
- Knowledge of NextJS, React code.
Responsibilities
- Configure and manage AEM Cloud.
- Manage and configure CDN (e.g., Cloudflare, or Adobe-managed CDN) to optimize performance and implement DDoS mitigation strategies.
- Implement and maintain Traffic Filter Rules and Web Application Firewall (WAF) configurations at the CDN level to block malicious spikes and sophisticated application-layer attacks.
- Integrate security tools (SAST/DAST) and secrets detection into CI/CD pipelines (Jenkins, GitLab) to identify vulnerabilities early in the development cycle.
- Install and manage AEM author, publish, and dispatcher instances with a focus on Dispatcher security hardening, SSL certificate automation, and ModSecurity configurations.
- Monitor system performance and security logs using tools like Splunk to proactively address threats and performance bottlenecks.
- Regularly audit the platform and its integrations (Adobe Analytics, Target) to ensure alignment with corporate security policies and industry standards.
Benefits
- Amazing Benefits
- Making Social Impact
- Fostering Diversity, Equity, Inclusion and Belonging at Okta
- Supporting Your Well-Being
- Developing Talent and Fostering Connection + Community
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
