Job ID: RQ10432 - DevOPS/Cloud Engineer - Senior
Job Description:
Design and deploy app attestation infrastructure using Apple App Attest and Google Play Integrity API to ensure wallet.
Architect, deploy, and manage Azure cloud infrastructure and Kubernetes (AKS/OpenShift) clusters/workloads, ensuring reliability, scalability, and secure multi‑environment operations.
Build and manage containerized workloads using Docker/Podman, infrastructure‑as‑code with Terraform/Ansible, and secure integrations with relational databases and event‑driven systems.
Implement DevSecOps practices including SAST/DAST scanning, secrets management, certificate rotation, vulnerability remediation, and compliance with identity trust frameworks (PCTF, NIST, eIDAS) and organization cybersecurity policies.
Conduct load testing, performance benchmarking, and continuous hardening of backend, wallet, and cloud components.
Implement observability and logging stacks (Prometheus, Grafana, Azure Log Analytics) and integrate crash analytics tools (Crashlytics, App Center) to drive stability and reliability improvements.
Collaborate with architects, developers, cybersecurity teams, and stakeholders to ensure cohesive delivery across wallet, agent, and platform components.
Produce documentation such as deployment architectures, runbooks, procedures, and operational playbooks while mentoring engineers in cloud, Kubernetes, and DevOps best practices.
Experience and Skill Set Requirements:
Mobile Wallet and Infrastructure Deployment
Implement automated delivery pipelines for digital credentials mobile wallet builds, ensuring consistent signing, versioning, and distribution through CI/CD processes.
Support publication and lifecycle management of mobile wallet applications in the Apple App Store and Google Play Store, ensuring compliance with platform requirements, signing procedures, and release governance.
Collaborate with product managers, technical lead, mobile developers and testers to coordinate release readiness, testing cycles, staged rollouts, and monitoring of app health across stores.
Design and implement backend app attestation infrastructure enabling validation of mobile wallet integrity using Apple App Attest and Google Play Integrity API. Implement push notifications using tools such as Firebase.
Collaborate with mobile engineering teams to embed attestation logic into wallet apps, strengthen anti‑tampering controls, and enhance overall platform security posture.
DevSecOps, CI/CD Automation & Engineering Quality
Build, maintain, and optimize CI/CD pipelines using tools such as Azure DevOps, Fastlane, BrowserStack, Codemagic, for both backend and wallet-related services, including automated testing, container builds, artifact management, and deployment approvals.
Implement load-testing and performance benchmarking using tools such as Locust or JMeter to validate system scalability under peak credential issuance and verification loads.
Enforce SDLC, code quality, and DevOps best practices—including code reviews, secure Integrate DevSecOps practices into all CI/CD workflows, embedding security scanning, SAST/DAST, secret detection, and container image scanning into pipelines.
Manage secure configuration of infrastructure including TLS certificate rotation, secret management, encryption policies, network segmentation, and hardened OS baselines.
Work with teams to implement identity and access management, privileged access controls, threat modeling, and continuous compliance monitoring.
Conduct regular infrastructure hardening, patching, library updates, dependency audits, and vulnerability remediation cycles for wallet, agent, and backend components.
Experience with scripting languages like Python and Bash
Ensure alignment with digital identity trust frameworks (PCTF, NIST, eIDAS) and enterprise cybersecurity policies.
Cloud Architecture, Platform Engineering & Infrastructure-as-Code
An expert in architecting, building, and maintaining Azure cloud infrastructure that supports the digital credential platform, ensuring high availability, resilience, and secure multi‑environment deployments.
Build and manage containerized workloads using Docker/Podman, applying secure image management, registry automation, and runtime hardening.
Design and operate Kubernetes production clusters (AKS/OpenShift), including workload orchestration, scaling policies, RBAC, network rules, and automated failover.
Develop and maintain infrastructure‑as‑code using Terraform, Ansible, and related tooling to ensure consistent, auditable, and automated environment provisioning.
Support backend components interacting with relational databases (e.g., PostgreSQL, MySQL) through secure connections and optimized queries.
Operate and integrate event‑driven architectures, caching mechanism, job schedulers and asynchronous messaging systems.
In-depth knowledge of Azure networking, VNETs, ingress controllers, firewalls, and identity integrations to support secure and compliant services.
