Apply Now

Kubernetes Engineer

Remote • Posted 5 hours ago • Updated 5 hours ago

Contract W2

12 Months

No Travel Required

Remote

$50 - $55/hr

Ohm Systems, Inc

Fitment

Dice Job Match Score™

🛠️ Calibrating flux capacitors...

Job Details

Skills

Kubernetes Engineer
Senior Kubernetes Engineer
GKE Engineer
Google Kubernetes Engineer
Kubernetes Platform Engineer
Kubernetes Administrator
Kubernetes Architect
Kubernetes SRE
Platform Engineer
Cloud Platform Engineer
Site Reliability Engineer
DevOps Engineer
GKE
Google Kubernetes Engine
Google Cloud Platform
GCP
Kubernetes
Config Sync
Config Connector
KCC
Policy Controller
Gatekeeper
ARC
Actions Runner Controller
External Secrets Operator
ESO
GitOps
Helm
Kustomize
Terraform
Workload Identity
Fleet Management
Binary Authorization
Shielded Nodes
CMEK
IAM
Secret Manager
Artifact Registry
RBAC
Pod Security Admission
Security Contexts
Calico
Cilium
CoreDNS
Kubernetes Networking
Services
Ingress
Node Pools
Taints
Tolerations
Autoscaling
GKE Dataplane V2
Prometheus
Grafana
Cloud Monitoring
PodMonitoring
kubectl
Linux
Cluster Upgrades
Multi Cluster Management
Kubernetes Troubleshooting
Container Security

Summary

Position Summary

The Kubernetes Engineer is a specialist responsible for the design, deployment, and operations of all GKE clusters in the H100 platform. This includes the KCC management cluster (Config Connector, Config Sync, Policy Controller), the GitHub Actions runner clusters (ARC, External Secrets Operator), and any future tenant workload clusters. You will ensure cluster security hardening, node pool optimization, workload scheduling, and GitOps delivery are operating at enterprise-grade reliability.

Key Responsibilities

Design, deploy, and operate GKE clusters: private clusters with Shielded Nodes, Workload Identity, CMEK encryption, custom node SAs
Manage Config Connector (KCC) on the management cluster: namespace isolation, ConfigConnectorContext per project, IAM SA bindings
Operate Config Sync across multiple clusters: RootSync/RepoSync configuration, Git/OCI/Helm sources, drift detection and remediation
Deploy and manage ARC (Actions Runner Controller) on runner clusters: scale-set configuration, autoscaling, ephemeral runner lifecycle
Implement and manage External Secrets Operator (ESO): ClusterSecretStore for Google Cloud Platform Secret Manager, ExternalSecret resources for GitHub App credentials
Configure and enforce Policy Controller / Gatekeeper: constraint templates (no-public-IP, require-CMEK, require-labels, require-private-networking, restrict-owner-role)
Manage node pools: machine types, taints/tolerations, autoscaling, surge upgrades, maintenance windows
Build and maintain runner pod specs for Linux, Windows, Android, and iOS runners with appropriate resource limits and security contexts
Implement Kubernetes RBAC: ClusterRoles, RoleBindings, service account management aligned with IAM tiering (ADR-016)
Monitor cluster health: node readiness, pod scheduling, Config Sync sync status, KCC resource reconciliation
Manage GKE Fleet membership, Binary Authorization policies, and GKE security bulletin monitoring
Troubleshoot Kubernetes issues: pod failures, scheduling problems, network policies, DNS resolution, storage classes
Perform cluster upgrades (control plane and node pools) with zero-downtime strategies

Required Qualifications & Skills

7+ years in Kubernetes engineering, with 3+ years on GKE specifically
Deep GKE expertise: private clusters, Workload Identity, Config Sync, Policy Controller, Fleet management
Strong understanding of Kubernetes internals: API server, etcd, scheduler, kubelet, kube-proxy, CNI
Experience with Config Connector (KCC) or similar Kubernetes-native Google Cloud Platform resource management
Hands-on ARC (Actions Runner Controller) deployment and management on Kubernetes
External Secrets Operator (ESO) configuration and troubleshooting
Helm chart management: values customization, chart versioning, Helm-sourced Config Sync
Kubernetes networking: Calico/Cilium network policies, Services, Ingress, DNS (CoreDNS)
Kubernetes security: Pod Security Admission, RBAC, SecurityContexts, secrets management
Kustomize expertise for manifest composition and overlay management
Monitoring: Prometheus, Grafana, Cloud Monitoring for GKE, PodMonitoring resources
Strong kubectl skills and Kubernetes troubleshooting methodology

Preferred / Nice-to-Have

Experience with Binary Authorization and container image signing
Familiarity with GKE Autopilot vs Standard mode trade-offs
Experience with Windows and non-Linux node pools on GKE
Kubernetes operator development (Go, controller-runtime)
CKA or CKAD certification

Technology Stack

Kubernetes: GKE (Standard), Config Sync, Policy Controller, ARC, ESO, KCC, Calico, Gatekeeper
Cloud: Google Cloud Platform (GKE, IAM, KMS, Secret Manager, Artifact Registry, Fleet, Binary Auth)
IaC: Kustomize, Helm, KCC YAML manifests, Terraform (GKE module)
CI/CD: GitHub Actions, ARC runner scale sets, Config Sync (Git, OCI, Helm sources)
Monitoring: Cloud Monitoring, Prometheus, Grafana, PodMonitoring
Networking: Calico Network Policies, GKE Dataplane V2, Services, PSC
OS: Linux (container base images), Windows (node pools), Android/iOS (runner images)

Experience

7+ years Kubernetes; 3+ years GKE; production multi-cluster management experience required.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 10111826
Position Id: 9007725
Posted 5 hours ago

Company Info

About Ohm Systems, Inc

Ohm Systems, Inc. specializes in IT and Healthcare staffing services, dedicated to linking highly skilled professionals with our public and private clients across the United States. Our track record showcases our commitment to delivering outstanding staffing and consultancy solutions to our clients. We prioritize diversity and inclusivity and take pride in being an employer that promotes equal opportunities and affirmative action. Our goal is to foster an inclusive work environment that embraces individuals from all backgrounds, irrespective of their gender, race, or orientation.

Go to company profile

Contact the job poster

Jay Khatri

Recruiter @ Ohm Systems, Inc

View Profile

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Kubernetes Engineer

Remote

•

Today

Easy Apply

Contract

Depends on Experience

Principal Platform Scripting & Infrastructure Engineer

Remote

•

Today

Position Summary The Principal Platform Scripting & Infrastructure Engineer is a senior-level hands-on engineer responsible for designing and building the automation layer that powers the H100 platform. This includes complex bootstrap scripts, infrastructure provisioning pipelines, Kustomize overlays, Terraform modules, and operational tooling. You will own the scripting and automation backbone that enables repeatable, auditable infrastructure delivery across Google Cloud Platform, GKE, and the

Easy Apply

Contract

55 - 60

Platform DevOps Engineer

Remote

•

Today

Position Summary The Platform DevOps Engineer is responsible for building and maintaining the CI/CD pipelines, GitOps delivery workflows, and developer experience tooling for the H100 platform. This role bridges infrastructure and application delivery, ensuring that platform changes flow through automated, tested, and auditable pipelines from code commit to production deployment. Key Responsibilities Design and maintain GitHub Actions CI/CD pipelines: Terraform plan/apply, KCC manifest validatio

Easy Apply

Contract

50 - 55

Search all similar jobs

Remote jobs at Ohm Systems, Inc