Sr Engineering Mgr, Cloud & DevSecOps

Position Title: Sr Engineering Mgr, Cloud & DevSecOps
Position Type: Regular - Full-Time
Position Location: Toronto HQ
Requisition ID: 30462
JOB PURPOSE:
Reporting to the Director, Cloud, DevSecOps, the Sr Engineering Manager will be responsible for: Design, implement and monitor enterprise-grade secure fault-tolerant infrastructure. Define and evolve Build & Release best practice by working within teams and educating the other stakeholder teams.
Design, implement, and maintain secure and efficient software development and deployment processes that integrate security practices throughout the entire software development lifecycle. Collaborate with cross-functional teams to ensure the seamless integration of security controls, automation, and continuous monitoring into the DevSecOps pipeline.
In the role as a DevSecOps and SRE leader, we believe that you are bringing experience of Operations and Security using DevOps. Strong analytical and automation skills that enable you to deliver the expected benefits to the business and digital products. Building and deploying distributed applications and big data pipelines in the cloud brings you excitement. You will be working with Cloud (Azure, GCP or AWS) . Jenkins, Groovy scripting, Shell scripting, Terraform, Ansible or an equivalent are a wide array of tools that you have used in the past.
This is an exciting opportunity to influence and build the DevSecOps framework for leading Manufacturing platform in Autonomous Buildings space, while working with the latest technologies on a cloud-based environment in a multi-disciplinary team with platform architects, tech leads, data scientists, data engineers, and insight specialists.
JOB RESPONSIBILITIES:

• Develop and implement a Cloud and DevSecOps strategy that integrates security practices throughout the software development and deployment lifecycle
• Design and Implement self service Cloud Infrastructure at Scale
• Modernize and Migrate Data Center in Cloud
• Design and architect the integration of security controls, vulnerability management, and compliance requirements into the DevOps pipeline
• Implement security automation and tooling to enable continuous security testing, vulnerability scanning, and code analysis
• Ensure software development practices adhere to industry security standards and regulatory requirements.
• Collaborate with cross-functional teams to foster a culture of collaboration and shared responsibility for security
• Provide guidance and training to development teams on secure coding practices, secure configuration management, and secure deployment strategies
• Establish incident response processes and procedures to quickly detect and respond to security incidents

• Implement continuous monitoring and log analysis to identify security threats and vulnerabilities
• Collaborate with incident response teams to investigate and remediate security incidents
• Design, implement and monitor enterprise-grade secure fault-tolerant infrastructure
• Define and evolve Build & Release best practice by working within teams and educating the other stakeholder teams. These best practices should support traceability & auditability of change.
• Ensure continuous availability of various DevOps tools supporting SCM & Release Management including Source Control, Containerization, Continuous Integration, & Change Management. (Jenkins, Docker, JIRA, SonarQube, Terraform, Google/Azure/AWS Cloud CLI).
• Implementing Build and release automated pipelines framework
• Implementing DevSecOps Tools and Quality Gates with SLO
• Implementing SAST, DAST, IAST, OSS tools in CICD Pipelines
• Implementing Automated change management policies in pieline from Dev-Prod.
• Work with cross-functional co-located teams in design, development and implementation of enterprise scalable features related to enabling higher developer productivity, environment monitoring and self-healing, and facilitate autonomous delivery teams.
• Build infrastructure automation tools and frameworks leveraging Docker, Kubernetes
• Will operate as a technical expert on DevOps infrastructure projects pertaining to Containerization, systems management, design and architecture. Perform performance analysis and optimization, monitoring and problem resolution, upgrade planning and execution, and process creation and documentation.
• Integrate newly developed and existing applications into private, public and hybrid cloud environments
• Automate deployment pipelines in a scalable, secure and reliable manner
• Leverage application monitoring tools to troubleshoot and diagnose environment issues
• Have a culture of automation where any repetitive work is automated
• Define and evolve Build & Release best practice by working within teams and educating the other stakeholder teams. These best practices should support traceability & auditability of change.
• Working closely with Cloud Infrastructure and Security teams to ensure organizational best practices are followed
• Translating non-functional requirements of Development, Security, and Operations architectures into a design that can be implemented using the chosen set of software for the project.
• Ownership of technical design and implementation for one or more software stacks of the DevSecOps team.

• Design and implementation of the distributed code repository.
• Implementing automation pipelines to support code compilation, testing, and deployment into the software components of the entire solution.
• Integrating the monitoring of all software components in the entire solution, and data mining the data streams for actionable events to remediate issues.
• Implement configuration management pipelines to standardize environments.
• Integrate DevSecOps software with credentials management tools.
• Create non-functional test scenarios for verifying the DevSecOps software setup.

KEY QUALIFICATION & EXPERIENCES:

• At least 5 years of relevant working experience in DevSecOps , Task Automation, or GitOps.
• Previous experience working on a cloud or SaaS operation team
• Experience with infrastructure management and monitoring
• Strong knowledge of DevOps Platform tooling
• Working knowledge of automation service provisioning and middleware configuration
• Excellent problem-solving skills and the ability to collaborate effectively with cross-functional teams
• Demonstrated proficiency in installation, configuration, or implementation in one or more of the following software.
• Jenkins, Azure DevOps, Bamboo, or software of similar capability.
• GitHub, GitLab, or software of similar capability.
• Jira, Asana, Trello, or software of similar capability.
• Ansible, Terraform, Chef Automate, or software of similar capability.
• Flux CD, or software of similar capability.
• Any test automation software.

• Any service virtualization software.
• Operating Software administration experience for Ubuntu, Debian, Alpine, RHEL.
• Technical documentation writing experience.
• DevOps Engineering certification for on-premises or public cloud is advantageous.
• Experience with work planning and effort estimation is an advantage.
• Strong problem solving and analytical skills.
• Strong interpersonal and written and verbal communication skills.
• Highly adaptable to changing circumstances. Interest in continuously learning new skills and technologies.
• Experience with programming and scripting languages (e.g. Java, C#, C++, Python, Bash, PowerShell).
• Experience with incident and response management.
• Experience with Agile and DevOps development methodologies.
• Experience with container technologies and supporting tools (e.g. Docker Swarm, Podman, Kubernetes, Mesos).
• Experience with working in cloud ecosystems (Microsoft Azure AWS, Google Cloud Platform,).
• Experience with configuration management systems (e.g. Puppet, Ansible, Chef, Salt, Terraform).
• Experience working with continuous integration/continuous deployment tools (e.g. Git, Teamcity, Jenkin, Artifactory).
• Experience in GitOps based automation is Plus
• Experience with Github for Actions, Github for Security, GitHub CoPilot
• BE/B-Tech /MCA or any equivalent degree in Computer Science OR related practical experience.
• Must have 5+ years working experience in Jenkins, GCP (or AWS/Azure), Unix & LINUX OS
• Must have experience with automation/configuration management tool (Jenkins using Groovy scripting, Terraform, Ansible or an equivalent)

• Must have experience in Kubernetes (GKE, KUBECTL, HELM) and containers (Docker)
• Must have experience on JFrog Artifactory and SonarQube
• Extensive knowledge of institutionalizing Agile and DevOps tools not limited to but including Jenkins, Subversion, Hudson, etc.
• Experience on Networking Skills (TCP/IP, SSL, SMTP, HTTP, FTP, DNS and More)
• Hands on in source code management tools like Git, Bitbucket, SVN etc.
• Should have working experience with monitoring tools like Grafana, Prometheus, Elasticsearch, SPLUNK, or any other monitoring tools/processes.
• Experience on Enterprise High Availability Platforms and Network and Security on GCP.
• Knowledge and experience on Java programming language
• Experience working on large scale distributed systems with deep understanding of design impacts on performance, reliability, operations, and security is a big plus.
• Understanding of self-healing/immutable microservice based architectures, cloud platforms, clustering models, networking technologies.
• Great interpersonal and communication skills
• Self starter and be able to work well in a fast paced, dynamic environment with minimal supervision
• Must have Public Cloud provider certifications (Azure, GCP or AWS)
• Having CNCF certification is plus

OTHER INFORMATION

• Travel: as required.
• Job is primarily performed in a Hybrid office environment.

The above information indicates the general nature and level of work performed by employees within this classification. It is not a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
McCain Foods is an equal opportunity employer. We see value in ensuring we have a diverse, antiracist, inclusive, merit-based, and equitable workplace. As a global family-owned company we are proud to reflect the diverse communities around the world in which we live and work. We recognize that diversity drives our creativity, resilience, and success and makes our business stronger.
McCain is an accessible employer. If you require an accommodation throughout the recruitment process (including alternate formats of materials or accessible meeting rooms), please let us know and we will work with you to meet your needs.
The health and safety of McCain employees and their families has been our number one priority since the start of COVID-19 pandemic. With vaccination restrictions easing across the globe we do not currently require employees to be vaccinated, but we reserve the right to change this mandate in line with health guidance and regulations in each country.
Your privacy is important to us. By submitting personal data or information to us, you agree this will be handled in accordance with the Global Privacy Policy
Job Family: Information Technology
Division: Global Technology
Department: Infrastructure and Operations
Location(s): CA - Canada : Ontario : Toronto || CA - Canada : New Brunswick : Florenceville-Bristol
Company: McCain Foods (Canada)