DevOps Engineer

3Core Systems, Inc is an SAP and Success Factors Partner with employees located across the United States. Our organization is dedicated to customer and employee satisfaction. We provide High Quality, Cost efficient and Competitive Solutions and Resources.

3Core Systems is looking for DevOps Engineer for one of our clients in Remote, Must have a Valid Passport to Travel International Global (US, UK, Singapore)

Job Title : DevOps Engineer

Location : Remote, Must have a Valid Passport to Travel International Global (US, UK, Singapore)

Travel Requirements

• Limited international travel. Occasional travel to primary hub sites and major regional locations may be required for in person collaboration with regional engineering teams.
• Estimated travel commitment is up to ten percent.

JOB DESCRIPTION / DUTIES

• The DevOps Engineer owns the pipeline layer that turns code in a repository into provisioned, governed, observable infrastructure and applications.
• The role builds and maintains the continuous integration and continuous delivery platform, defines the standard pipeline patterns that every workload follows, and engineers the policy and security gates that prevent unsafe change from reaching production.
• This role is critical to closing a current operational gap. Manual portal driven deployment has accumulated drift, weakened auditability, and exposed the estate to risks that disciplined pipeline engineering eliminates by default.
• The DevOps Engineer makes the repository, the pipeline, and the policy engine the only path to production, and engineers that path so it is fast, predictable, and safer than the manual alternative.
• The role is a key partner to the Cloud Platform Engineer for Infrastructure as Code pipelines, to the Cybersecurity team for security gates, to the FinOps Engineer for cost gates, and to application engineering for application delivery pipelines.
• The pipeline platform is provider agnostic and must support workloads on the primary Azure estate, the AWS secondary estate, and a future Google Cloud Platform footprint if and when workloads require it.
• The DevOps Engineer also owns the developer experience of the pipeline platform, ensuring that workload teams find the standard path to be the easiest path.

Role and Responsibilities

This role is sized to recruit at Mid-level (four to seven years of DevOps and pipeline engineering experience with multi cloud exposure) or Senior level (eight years or more, with deep CI / CD platform ownership, policy gate engineering experience, and working pipeline coverage across Azure and AWS).

The hiring manager will calibrate the offer to the candidate.

Senior candidates are expected to set standards for the global pipeline pattern library and lead the engineering of policy and security gates across all workloads.

Key Responsibilities

Pipeline Engineering and Standards

• Design and maintain the standard pipeline pattern library: covering Infrastructure as Code pipelines, container build and publish, application deployment, database change, and configuration deployment.
• Engineer provider agnostic patterns: so the same pipeline workflow can target Azure as the primary cloud, AWS as the secondary cloud, and Google Cloud Platform if and when workloads require it.
• Engineer reusable pipeline components: as GitHub Actions composite actions or reusable workflows so workload teams consume rather than reinvent.
• Operate the CI / CD platform: including GitHub Enterprise configuration, self-hosted runners where required, runner scaling, and runner security posture.
• Maintain the pipeline catalogue: with documentation, versioning, deprecation notes, and consumer feedback channels.

Source Control and Branching Strategy

• Define and enforce branching strategy: across the organization, defaulting to trunk based development with short lived branches and pull request based review.
• Configure branch protection: including required reviews, required status checks, code owners enforcement, and signed commits where appropriate.
• Operate GitHub Enterprise: including organization policy, team structure, permissions, audit log review, and license optimization.
• Engineer repository templates: for new services so workload teams start with the correct pipeline, policy file, and security baseline.

Security and Policy Gates

• Implement secrets scanning: with GitHub Advanced Security secret scanning, push protection, and complementary tooling where required.
• Engineer IaC validation gates: including terraform validate, terraform plan, tflint, Checkov or tfsec, and policy as code via Open Policy Agent or Contest.
• Wire static application security testing: into application pipelines using CodeQL, SonarQube, Sync Code, or equivalent.
• Wire software composition analysis: for dependency scanning and license checks.
• Engineer container security gates: including base image policy, vulnerability scanning, and image signing.

Release Engineering and Deployment Patterns

• Engineer environment promotion: from non-production to production including approval gates aligned to risk and change management requirements.
• Implement deployment patterns: including blue green, canary, and rolling deployments where workload risk justifies.
• Engineer rollback and recovery: into every standard pipeline so that workload teams have a tested recovery path before they go live.
• Integrate change records: with ServiceNow Change Management for production deployment traceability.

Cost and Reliability Gates

• Wire cost estimation: into IaC pipelines using Infracost or equivalent so cost impact is visible at pull request time.
• Wire observability registration: into deployment pipelines so dashboards, alerts, and Configuration Management Database entries are created with the resource, not after.
• Partner with the Site Reliability Engineer: on Service Level Objective definition and burn rate alerting integration into deployment pipelines.

Developer Enablement and Operational Excellence

• Engineer the developer experience: of the pipeline platform including documentation, examples, common templates, and clear error messages on gate failures.
• Operate the pipeline incident response: for platform outages, broken gates, and runner failures.
• Maintain pipeline metrics: covering deployment frequency, lead time for changes, change failure rate, and mean time to recovery, and report these at the global level.
• Coach workload teams: on pull request hygiene, pipeline troubleshooting, and adoption of standard patterns.

Required Qualifications & Experience

• Education: Bachelor degree in Computer Science, Engineering, Information Systems, or equivalent practical experience.
• Experience: Four to seven years of DevOps or platform engineering experience for Mid-level. Eight years or more for Senior level, with deep CI / CD platform ownership.
• GitHub Enterprise and GitHub Actions: Production experience operating GitHub Enterprise and authoring GitHub Actions workflows and composite actions.
• Pipeline tooling: Working knowledge of policy as code (Open Policy Agent, Conftest), IaC validation (tflint, Checkov, tfsec), secrets scanning, SAST, and software composition analysis tools.
• Containers: Solid Docker and OCI image practice including multi stage builds, image signing, and registry operations.
• Kubernetes familiarity: Working understanding of Kubernetes deployment patterns through Helm, ArgoCD, or Flux.
• Scripting and automation: Proficiency in Bash and either PowerShell or Python for pipeline tooling.
• Azure pipeline experience (primary): Strong production experience engineering pipelines against Azure including identity integration via OpenID Connect federation, role assignments, and managed identity patterns.
• AWS pipeline experience (secondary): Working production experience engineering pipelines against AWS including OpenID Connect federation, Identity and Access Management role assumption, and the AWS specific GitHub Actions patterns. Required at working level.
• Google Cloud Platform awareness (emerging): Working familiarity with Google Cloud Platform pipeline patterns is desirable. The organization is not currently operating Google Cloud Platform at scale, so this is treated as upside rather than a hard requirement.
• Certifications: GitHub Actions certification desirable. Azure DevOps Engineer Expert (AZ-400) desirable for Senior. AWS Certified DevOps Engineer Professional desirable for Senior. Certified Kubernetes Administrator desirable.
• Pipeline metrics: Familiarity with DORA metrics and engineering them into the pipeline platform itself.
• Security awareness: Understanding of supply chain security including SBOMs, image signing, and provenance attestation.
• Communication: Ability to explain pipeline decisions to engineering audiences and to translate cost, reliability, and risk implications for business stakeholders.

Personal Characteristics

• Developer empathy: Designs the path of least resistance to be the safest path. Treats pipeline friction as an engineering defect.
• Engineering discipline: Versions pipeline components, tests them, and rolls out changes carefully. Does not treat the CI platform as a sandbox.
• Security mindset: Assumes credentials will leak and pipelines will be attacked. Engineers controls accordingly.
• Pragmatism: Knows when to ship a workable pipeline and iterate, rather than waiting for the ideal pattern.
• Collaboration: Works closely with cybersecurity, platform, and application engineering. Comfortable being challenged on gate design.
• Curiosity: Tracks the CI / CD ecosystem actively. Brings new patterns to the team and tests them before adopting.

Please send your resumes to: venu(at)3coresystems(.)com Contact: (630) (971) (5271) Regards, Recruiting Team 3Core Systems Inc 9101 Burnet Road, Suite 207, Austin, TX 78758 URL: www. 3coresystems. com 3Core Systems, Inc Web: http://www.3coresystems. com