Senior DevOps Engineer

* This is a remote position; however, the candidate must reside within 30 miles of one of the following locations: Boston, MA; San Francisco Bay Area, CA; Dallas, TX; Salt Lake City, UT and Portland, ME.

About the Team/Role

As a Senior DevOps Engineer (SDE4), you will play a critical role in enabling and optimizing cloud-native platforms, with a strong emphasis on CI/CD processes, deployment automation, Kubernetes operations, and security enforcement. You will be responsible for designing and maintaining robust automation workflows to ensure efficient, secure, and scalable software delivery across WEX Fabric PaaS and traditional infrastructure environments. Your role includes troubleshooting complex issues, optimizing cloud-native workloads, and mentoring junior engineers.

How you'll make an impact

• Architect, build, and optimize CI/CD pipelines using GitHub Actions, Argo CD, and other automation tools.

• Ensure seamless integration of GitOps methodologies for infrastructure and application delivery.

• Debug and optimize Kubernetes workloads, ensuring stability, security, and performance across Fabric PaaS and traditional cloud environments.

• Improve and maintain Infrastructure as Code (Terraform, Helm) for automating cloud and platform provisioning.

• Implement and manage Configuration as Code using Ansible to automate system configurations and application deployments.

• Work closely with development teams to refine deployment strategies, enhance application performance, and promote best DevOps practices.

• Automate operational tasks to minimize toil and improve deployment efficiency.

• Drive deployment security and compliance automation, ensuring best practices in access control, container scanning, and runtime security.

• Assist in service mesh implementation and debugging, ensuring traffic routing and security policies are correctly enforced.

• Advocate for self-service DevOps capabilities to reduce operational overhead and accelerate Fabric PaaS adoption.

• Provide mentorship and technical guidance to junior and mid-level engineers, as well as support new team members in their onboarding and growth.

Experience you'll bring

• 6-8 years of experience in DevOps or platform engineering, with expertise in CI/CD, Kubernetes, Infrastructure as Code (IaC), and automation frameworks.

• CI/CD Expertise: Strong understanding of CI/CD pipeline architecture, workflow automation, and deployment best practices using:

  • GitHub Actions (including reusable workflows, matrix builds, environment configurations, and automated rollbacks).

  • Argo CD (including ApplicationSets, Sync Phases, progressive deployments, and Rollbacks).

  • GitOps methodologies for managing infrastructure as code.

• Kubernetes & Multi-Cluster Orchestration: Advanced experience managing Kubernetes workloads, including:

  • Workload scheduling and tuning (requests, limits, affinity/anti-affinity, taints/tolerations).

  • Networking and service discovery (Ingress controllers, Fabric PaaS networking, DNS resolution troubleshooting).

  • Security and access controls (RBAC, Pod Security Standards, Network Policies within Fabric PaaS).

  • Persistent storage and stateful workloads (PVCs, StatefulSets, CSI drivers).

  • Cluster operations (scaling strategies, upgrades, troubleshooting node/pod failures).

• Infrastructure as Code (IaC): Expertise in writing, optimizing, and managing Terraform and Helm, including:

  • Developing modular Terraform configurations.

  • Writing and maintaining Helm charts for Kubernetes applications.

  • Integrating IaC automation with CI/CD workflows.

• Containerization: Strong hands-on experience with Docker and container security, including:

  • Image creation and optimization (multi-stage builds, security scanning, immutability best practices).

  • Debugging container issues in production environments.

  • Managing container runtime security and access policies.

• Configuration as Code: Proficiency in Ansible for managing configurations, including:

  • Automating system provisioning and configuration.

  • Ensuring repeatable, consistent application deployments.

• Security & Compliance: Ability to implement security best practices, including:

  • Container vulnerability scanning and supply chain security (including artifact integrity, dependency validation, and secure build processes).

  • IAM policy configurations and RBAC enforcement.

  • Automated compliance checks for Kubernetes workloads.

• At least 2 years of hands-on experience writing or maintaining code in a modern programming language like Python, Java, C#, or Go.

Nice to have:

• Advanced CI/CD Strategies: Experience with multi-environment deployments, progressive rollouts, blue-green deployments, canary releases, and rollback strategies.

• Cloud-Native Debugging: Ability to troubleshoot distributed systems, analyze logs, and identify performance bottlenecks in Kubernetes and hybrid cloud environments using:

  • Structured logging, trace analysis, and event correlation tools (Datadog, Open Telemetry, Prometheus, Splunk).

• Service Mesh & Traffic Management: Hands-on experience with Istio, Linkerd, Consul, or AWS App Mesh for:

  • Traffic shaping, ingress control, and service-to-service security policies.

  • mTLS-based authentication, circuit-breaking, and failover strategies.

• Fabric PaaS Familiarity: While prior experience with Fabric PaaS is not required, candidates should be able to quickly learn its architecture, networking model, and deployment methodologies.

• Observability & Performance Monitoring: Experience with monitoring and alerting solutions such as Datadog, Prometheus, Splunk, or Open Telemetry, focusing on:

  • Real-time log aggregation and structured log analysis.

  • Application and infrastructure performance monitoring.