Job Description

Project Role :

Operations Engineer

Project Role Description :

Support the operations and/or manage delivery for production systems and services based on operational requirements and service agreement.

Must have skills :

HashiCorp Vault, Amazon Web Services (AWS), Kubernetes, AWS EKS, Terraform

Good to have skills :

NA

Minimum

5

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: As an Operations Engineer, you will support the operations and manage delivery for production systems and services based on operational requirements and service agreements. Your typical day will involve collaborating with various teams to ensure seamless service delivery, troubleshooting issues, and implementing solutions to enhance system performance. You will engage in proactive monitoring and maintenance of systems, ensuring they meet the required standards and operational goals. Additionally, you will be responsible for documenting processes and providing insights to improve operational efficiency, all while fostering a collaborative environment that encourages innovation and teamwork. Roles & Responsibilities: - Vault 1. Deploy, configure, and maintain Vault clusters (Enterprise or OSS) in production environments. 2. Manage Vault authentication methods, policies, namespaces, and secret engines (KV, Transit, PKI, Database, AWS, LDAP etc.). 3. Perform upgrades, patching, DR configuration, and replication setup. 4. Monitor Vault performance, latency, and health metrics; perform root cause analysis for issues. 5. Ensure 24/7 availability through redundancy, scaling, and failover mechanisms. 6. Implement RBAC, least privilege access, and secret lifecycle policies. 7. Integrate Vault with identity providers (OIDC, LDAP, Cloud IAM, OKTA , Approle). 8. Manage audit logging, key rotation, and access reporting for compliance. 9. Manage Vault infrastructure using Terraform, Ansible for reproducible deployments. 10. Automate application onboarding, secret rotation, and policy creation. 11. Integrate Vault provisioning into CI/CD pipelines (GitHub Actions, Jenkins ). 12. Build self-service APIs and workflows for developers to securely consume Vault services. 13. Integrate Vault with monitoring tools (Prometheus, Grafana, Splunk ). 14. Set up alerts and dashboards for health, usage, and performance metrics. 15. Implement automated backup and recovery workflows. 16. Partner with security, DevOps, and platform teams on Vault adoption and best practices. 17. Contribute to Vault governance, access control standards, and architecture reviews. Professional & Technical Skills: - Vault 1. Deploy, configure, and maintain Vault clusters (Enterprise or OSS) in production environments. 2. Manage Vault authentication methods, policies, namespaces, and secret engines (KV, Transit, PKI, Database, AWS, LDAP etc.). 3. Perform upgrades, patching, DR configuration, and replication setup. 4. Monitor Vault performance, latency, and health metrics; perform root cause analysis for issues. 5. Ensure 24/7 availability through redundancy, scaling, and failover mechanisms. 6. Implement RBAC, least privilege access, and secret lifecycle policies. 7. Integrate Vault with identity providers (OIDC, LDAP, Cloud IAM, OKTA , Approle). 8. Manage audit logging, key rotation, and access reporting for compliance. 9. Manage Vault infrastructure using Terraform, Ansible for reproducible deployments. 10. Automate application onboarding, secret rotation, and policy creation. 11. Integrate Vault provisioning into CI/CD pipelines (GitHub Actions, Jenkins ). 12. Build self-service APIs and workflows for developers to securely consume Vault services. 13. Integrate Vault with monitoring tools (Prometheus, Grafana, Splunk ). 14. Set up alerts and dashboards for health, usage, and performance metrics. 15. Implement automated backup and recovery workflows. 16. Partner with security, DevOps, and platform teams on Vault adoption and best practices. 17. Contribute to Vault governance, access control standards, and architecture reviews. - VMware Tanzu / Pivotal Cloud Foundry 1. Installation, configuration, and maintenance of Tanzu platform. 2. Support applications deployed on Tanzu platform 3. Strong development experience on Concourse CI/CD tool to deploy pipelines for managing Tanzu Application Services 4. Experience with BOSH release management tools. 5. Troubleshooting experience in Tanzu, Healthwatch, App Metrics etc. 6. Enabling/Disabling the service tiles, good understanding on service brokers. 7. Good understanding and troubleshooting experience with the container technologies (Kubernetes/Docker) 8. Experience in managing and performing internal and TLS certificate rotations 9. Experience with CF CLI and BOSH CLI - AWS :- 1. Associate level certification (SysOps/SA/Developer) in AWS 2. Experience in deploying and managing core AWS services 3. Experience in Infrastructure as Code (IaC) methodology using HashiCorp Terraform, Ansible, CloudFormation. Additional Information: 1. Flexible to work in 24/7 rotational shift supporting production environments. 2. Deep understanding on Linux OS internals, thorough understanding on SSL/TLS implementation and other security patterns at all the layers. 3. Good scripting knowledge in Bash and Python 4. Good understanding on DevOps best practices. 5. Good to have knowledge on splunk monitoring. 6. Thorough understanding on ITIL best practices. 7. Experience in documentation of runbooks, KB articles, and training materials for internal users. 8. Participate in incident response, RCA, and on-call rotations 9. A 15 years full time education is required.




15 years full time education