Responsibilities
- Administer and support GitHub Cloud, GitHub Enterprise Server, and Azure DevOps, including managing the ongoing migration of repositories, pipelines, and work item history (e.g., Azure Boards) from ADO to GitHub Enterprise.
- Design, build, and maintain CI/CD pipelines and reusable GitHub Actions workflows (and Azure DevOps YAML pipelines where still required), including secret scanning, SAST, dependency/image scanning, and approval-gated deployment stages.
- Build and manage self-hosted runner/agent infrastructure, including scalable, Kubernetes-backed runner solutions (e.g., Actions Runner Controller) to replace GitHub-hosted runners for teams affected by network/IP restrictions.
- Integrate and maintain security tooling across the SDLC: secret scanning (GitLeaks), SAST (SonarQube), dependency and container image scanning (Trivy, Snyk, Checkmarx, Wiz), and DAST (OWASP ZAP).
- Implement and enforce governance and guardrails, including secrets management via Azure Key Vault/AWS Secrets Manager, policy-as-code enforcement (e.g., OPA), Dependabot, and CodeQL.
- Support containerized deployments to Kubernetes-based platforms (AKS, EKS/ECS, or OpenShift/ARO), including writing and maintaining Helm charts and Kubernetes manifests.
- Develop and maintain Infrastructure-as-Code using Terraform, and automate recurring platform tasks using Python and Shell scripting.
- Build reporting/analytics processes to track platform usage (e.g., AI coding assistant consumption and billing data) and deliver that data to relevant teams.
- Evaluate and integrate AI development tools (GitHub Copilot, Cursor, Claude Code, and similar) into engineering workflows, and help pilot/roll out new AI platforms as they're adopted.
- Partner directly with engineering teams — including less technically-oriented consumers of the platform — to troubleshoot issues, build self-service processes, and support adoption of new tooling and pipeline changes.
- 5+ years of experience in a DevOps, Platform Engineering, or DevSecOps role.
- Hands-on experience with GitHub (Actions, Enterprise administration, self-hosted runners) and Azure DevOps (pipelines, agent pools).
- Practical experience with CI/CD pipeline design, including integrating security and quality gates (SAST, secret scanning, dependency/image scanning) directly into the pipeline.
- Experience with container technologies and orchestration platforms (Kubernetes, Docker), including writing deployment manifests and/or Helm charts.
- Experience integrating and managing secrets via a vault solution (Azure Key Vault or AWS Secrets Manager).
- Working knowledge of at least one Infrastructure-as-Code tool (Terraform preferred).
- Proficiency in Python and/or Shell scripting for automation.
- Experience with artifact/package management tools (JFrog Artifactory, GitHub Packages, Nexus, or similar).
- Practical, hands-on experience using AI coding assistants (GitHub Copilot, Cursor, Claude Code, or similar) as part of daily engineering work.
- Strong troubleshooting skills and the ability to communicate technical concepts clearly to both technical and non-technical stakeholders.
- A demonstrated ability to learn new platforms and tools quickly, and to build reusable, scalable processes rather than one-off fixes.
- Experience leading or heavily contributing to a large-scale CI/CD platform migration (e.g., Azure DevOps to GitHub Enterprise, or Jenkins to Tekton).
- Experience with GitOps deployment patterns and tools such as Argo CD.
- Experience with cloud-native, Kubernetes-based CI/CD tooling (e.g., Tekton).
- Experience managing self-scaling, Kubernetes-backed runner/agent pools (e.g., Actions Runner Controller, VM scale sets).
- Familiarity with DAST tooling (OWASP ZAP) and static analysis tools beyond SonarQube (Checkmarx, CodeQL).
- Experience monitoring infrastructure and applications using Datadog or a comparable observability platform.
- Exposure to building internal AI-assisted tools (e.g., using an LLM API or a platform like Microsoft Copilot Studio) to support engineering or business processes.
- AWS experience (IAM roles/policies, hardened AMIs, EKS/ECS) is a plus for teams working in hybrid Azure/AWS environments.
Skills Required
- 5-7 years of experience in DevOps, DevSecOps, Platform Engineering, or Cloud Engineering
- Willing to work US shifts - Central Timezone
- Hands-on expertise with at least one CI/CD platform (GitHub Actions, GitLab CI/CD, Jenkins, Tekton, ArgoCD)
- Experience building and maintaining multi-stage CI/CD pipelines, multi-environment deployment workflows, and automated testing/deployment
- Kubernetes experience (EKS, AKS, or GKE), container orchestration, and Helm chart deployment/management
- Infrastructure as Code using Terraform or OpenTofu
- Hands-on experience with at least one cloud platform (AWS, Azure, GCP)
- Experience integrating security tools into CI/CD pipelines (SAST: Semgrep/Checkmarx/Snyk Code; SCA: Snyk OSS/Mend/Dependabot; Container security: Trivy/Grype/Prisma Cloud; Secrets detection: Gitleaks/TruffleHog/HashiCorp Vault)
- Experience with policy-as-code solutions (Open Policy Agent, Rego, Kyverno) and enforcement
- Knowledge of Kubernetes admission controllers, security policy enforcement, and compliance automation
- Experience with artifact repository platforms (JFrog Artifactory, Sonatype Nexus, GitHub Packages) and artifact promotion/dependency management
- Strong scripting skills: Python, Bash, PowerShell
- Experience with Git version control and branching strategies
- Good understanding of Linux administration and networking fundamentals
- Experience with GitOps practices, service mesh (Istio/Linkerd), observability (Prometheus/Grafana/OpenTelemetry/ELK/OpenSearch), cloud security/compliance, SRE principles, and relevant certifications (CKA, Terraform Associate, AWS certs)
What We Do
@TechBlocks we power the software defined industries (SDI) of today and tomorrow. We are a software engineering and consulting firm. We build modern digital value chains and businesses reimagined to create frictionless experiences for innovative monetization methods and drive unforeseen efficiencies. We are known to build world class custom platforms and products that are cloud native for some of the worlds largest brands. We are the go to technology partners for born in digital businesses that grew with us from "Concept to Commercialization" and have revenues between $100M - $10B. We help modern businesses transition just from a technology outsourcing mentality to help create globally distributed digital COEs and mature them. Our converged COEs that we create in partnership with our clients help power software factories that are extremely dynamic. We have created modern digital COEs and factories that are created with a single minded goal to future proof our clients businesses. Everything we do is centred around two philosophies and practices - Design Thinking and Lean Engineering. Whether it is building digital commerce platforms, marketplace for worlds largest retailers or smart utilities applications and products or digital health products/platforms that power wearables, patches or devices across healthcare landscape; we do it all with speed and sophistication that is unmatched in the industry









