AWS and EKS (Elastic Kubernetes Service) – Hands-on experience with AWS, specifically EKS, is critical for managing containerized applications and building cloud-native DevSecOps platforms.
Kubernetes and Containerization – Strong expertise in Kubernetes and containerization is essential for containerizing mid-tier applications (Java and Python) and ensuring secure, scalable, and connected container environments.
DevSecOps Tools and Automation – Proficiency with tools like CloudBees, BitBucket, Sonar, Artifactory, and a solid understanding of Continuous Integration (CI), Continuous Testing (CT), and Continuous Deployment (CD) concepts to build automated and secure pipelines is crucial.
Python and Shell Scripting – Hands-on experience with Python and Shell scripting is necessary for automating manual tasks and managing DevSecOps workflows within the cloud-native environment.
Cross-functional Team Collaboration and Leadership – The ability to collaborate across teams and provide leadership in selecting and implementing cloud-native strategies, while ensuring the platform's security and operational efficiency, is a key requirement for this role.
CloudBees – While Jenkins is a more commonly mentioned CI/CD tool, CloudBees (the enterprise version of Jenkins) is a more specialized tool that’s not often seen in every job description. Its mention highlights a specific focus on enterprise-scale CI/CD pipelines.
Sonar – SonarQube, often referred to as Sonar, is a code quality and security tool, which is valuable but not always listed in DevOps or cloud-native roles. Its inclusion points to an emphasis on code quality and vulnerability scanning.
Artifactory – While many JDs reference container registries, the inclusion of Artifactory, a universal repository manager, is less common. It indicates the need for managing various types of packages and artifacts.
On-call Rotation – Mentioning participation in an on-call rotation highlights the need for 24/7 availability and operational support, which is more commonly seen in site reliability engineering (SRE) roles but not always emphasized in cloud-native or DevSecOps roles.
Linux and Windows Administration – Having skills in both Linux and Windows administration is unusual for a cloud-native DevSecOps role, which typically focuses more on Linux environments. This suggests a need for flexibility in managing both operating systems in the infrastructure.