Technical Manager, DevOps

About The Position

Requirements

• Experience: 8-10 years of professional DevOps experience, with at least 4 years in a technical leadership role focused on cloud and database security.
• AWS Technical Leadership: Proven expertise in leading AWS-based solutions, including architecting and managing AWS EKS for Kubernetes workloads, AWS Control Tower for governance, and services like EC2, S3, VPCs, IAM, and Security Groups-AWS experience is mandatory.
• AWS EKS Expertise: Hands-on experience designing, deploying, and securing AWS EKS clusters, including cluster autoscaling, logging (e.g., CloudWatch), monitoring, and integration with CI/CD pipelines.
• AWS Control Tower Proficiency: Demonstrated ability to implement and manage AWS Control Tower for multi-account governance, compliance, and security policy enforcement.
• Infrastructure as Code: Advanced proficiency in writing and managing IaC using Terraform for AWS and Azure environments, ensuring secure and scalable resource provisioning.
• AWS RDS Security: Proven experience securing AWS RDS instances running MSSQL, MySQL, and PostgreSQL, including encryption, auditing, and access management.
• Azure Cloud Security: Strong skills in securing Azure infrastructure, including Azure AD, Virtual Networks, Key Vault, and Sentinel-Azure experience is mandatory.
• Database Security: Hands-on expertise securing MSSQL, MySQL, and PostgreSQL databases, including vulnerability assessment, hardening, and compliance.
• Application Security: Proficiency in identifying and resolving vulnerabilities in Java, Node.js, and .NET applications, with a focus on secure coding practices.
• Network Security: Deep knowledge of ingress/egress firewall configuration, network segmentation, and traffic monitoring using tools like AWS WAF and Azure Firewall.
• Security Tools: Expertise with tools like Snyk, Orca, Nexus, or similar for vulnerability management, penetration testing, and dependency scanning.
• SOC Controls & Audits: Strong familiarity with SOC 2 compliance, audit preparation, and control implementation for infrastructure, applications, and databases.
• CI/CD Integration: Experience with CI/CD tools (e.g., Jenkins, GitLab, Azure DevOps) and embedding security into automated workflows.
• Analytical Skills: Strong problem-solving skills to troubleshoot complex security and technical issues in a fast-paced environment.
• Communication Skills: Excellent verbal and written communication to collaborate with technical teams and present technical strategies to leadership.

Nice To Haves

• Certifications: AWS Certified Security - Specialty, AWS Certified Solutions Architect - Professional, Microsoft Certified: Azure Security Engineer Associate, CISSP, or CEH are highly desirable.
• Container Security: Experience securing containerized environments (e.g., Docker, Kubernetes) in AWS EKS and Azure AKS.
• Scripting Proficiency: Familiarity with scripting languages (e.g., Python, Bash, PowerShell) for automation of security and infrastructure tasks.

Responsibilities

• Be the point of contact for on-call, production support to resolve issues.
• Own DevOps support tickets issues.
• Lead the design, implementation, and optimization of secure DevOps pipelines and infrastructure in AWS and Azure, with a focus on AWS EKS for Kubernetes-based workloads and AWS Control Tower for multi-account governance, adhering to cloud-native security and scalability best practices.
• Provide technical leadership for AWS EKS, overseeing cluster architecture, auto-scaling, security configurations (e.g., RBAC, Pod Security Policies), and integration with CI/CD pipelines for containerized applications.
• Architect and manage AWS Control Tower to enforce governance, compliance, and security policies across multi-account AWS environments, ensuring standardized account management and guardrails.
• Drive infrastructure-as-code (IaC) initiatives using Terraform to provision and manage AWS and Azure resources, ensuring consistency, reproducibility, and security.
• Secure AWS RDS instances hosting MSSQL, MySQL, and PostgreSQL databases, implementing encryption, access controls, auditing, and vulnerability management.
• Identify and resolve security vulnerabilities in infrastructure, applications (Java, Node.js, .NET), and database systems, promoting secure coding and configuration practices.
• Configure and manage ingress/egress network firewalls (e.g., AWS WAF, Azure Firewall) to safeguard cloud, on-premises, and database environments from unauthorized access and threats.
• Leverage security tools such as Snyk, Orca, Nexus, and others to conduct vulnerability scans, penetration testing, and risk assessments across infrastructure, applications, and databases.
• Integrate security into CI/CD pipelines, collaborating with development teams to ensure secure code deployment, IaC, and database configurations using tools like Jenkins, GitLab, or Azure DevOps.
• Conduct security audits and ensure compliance with SOC controls (e.g., SOC 2), providing detailed documentation and remediation plans for infrastructure, applications, and database security.
• Monitor and respond to security incidents using AWS and Azure cloud security services (e.g., AWS Security Hub, Azure Sentinel) and database-specific monitoring tools.
• Harden cloud infrastructure (e.g., IAM policies, encryption, network security groups) and database environments to mitigate risks and align with industry standards.
• Provide strategic technical guidance on emerging security threats, tools, and best practices, delivering actionable recommendations to enhance organizational security posture.
• Mentor and coach team members on DevOps and security practices, including AWS EKS, AWS Control Tower, IaC, and database security, fostering a culture of technical excellence and security-first mindset.
• Drive cross-functional collaboration with development, operations, and security teams to align technical solutions with business objectives and operational requirements.

Benefits

• Medical
• Dental
• Vision
• PTO
• health and wellness programs
• employee discounts