TalentXO
Website:
talentxo.com
Job details:
Hiring for a Client - ConglomerateIT
Role & Responsibilities
1. Ansible Automation Design and maintain enterprise-grade playbooks, roles, and collections. Automate OS patching, configuration drift correction, security hardening, and compliance enforcement across AWS, Azure, VMware, and REST-integrated environments. Combine Ansible with Terraform for seamless post-provisioning configuration.
2. AWS Cloud Automation Architect serverless and event-driven automation using Lambda, Step Functions, EventBridge, SNS/SQS, S3 triggers, and Systems Manager. Build scalable, cross-account automation across AWS Organizations with proper IAM boundaries. Align all implementations with CIS, NIST, and AWS Well-Architected standards.
3. Kubernetes & Helm Develop and own custom Helm charts for multi-environment Kubernetes deployments. Manage the full Helm lifecycle including upgrades, rollbacks, and canary releases. Drive GitOps adoption using ArgoCD or Flux. Automate namespace management, RBAC, secrets, and network policies.
4. Infrastructure as Code & CI/CD Build reusable, versioned Terraform modules covering AWS networking, IAM, EKS, ECS, RDS, and security controls. Implement CI/CD pipelines for IaC using GitHub Actions or Azure DevOps — with automated testing, linting, drift detection, and policy enforcement baked in.
5. Security & Compliance Automation Automate CIS benchmark enforcement, vulnerability remediation, and infrastructure hardening. Integrate with CyberArk, AWS Secrets Manager, and SSM Parameter Store. Implement policy-as-code using OPA, Gatekeeper, or Conftest. Automate certificate lifecycle management end to end.
6. Observability & Auto-Remediation Connect automation workflows to New Relic and LogicMonitor for telemetry-driven triggers. Build self-healing routines that detect, diagnose, and resolve incidents automatically. Convert operational runbooks into fully automated diagnostic workflows to cut MTTR significantly.
7. ITSM Integration Integrate automation into SymphonyAI-driven ticketing, approval flows, CMDB updates, and change management processes. Build operational runbooks that map directly to ITSM workflows.
Ideal Candidate
- Strong Cloud Automation Architect Profile
- Mandatory (Experience 1) – Must have 8+ years of total experience with the last 6–7 years focused continuously on hands-on infrastructure automation in enterprise environments
- Mandatory (Experience 2) – Must have expert-level Ansible engineering, including advanced Jinja2 templating, dynamic inventory, custom module development, and designing enterprise-grade playbooks, roles, and collections across AWS, Azure, VMware, and REST-integrated environments
- Mandatory (Experience 3) – Must have strong Kubernetes and Helm expertise, including custom Helm chart authoring, multi-environment lifecycle management (upgrades, rollbacks, canary releases), namespace management, RBAC, secrets, and network policies — with GitOps adoption via ArgoCD or Flux
- Mandatory (Experience 4) – Must have deep Terraform knowledge, including reusable module design covering AWS networking, IAM, EKS, ECS, RDS, and security controls — with CI/CD integration (GitHub Actions or Azure DevOps) including automated testing, linting, drift detection, and policy enforcement
- Mandatory (Experience 5) – Must have solid AWS architecture knowledge, including serverless and event-driven automation (Lambda, Step Functions, Event Bridge, SNS/SQS, S3 triggers, Systems Manager), IAM design, cross-account automation across AWS Organizations, and multi-account networking aligned with CIS, NIST, and AWS Well-Architected standards
- Mandatory (Experience 6) – Must have experience with security and compliance automation including CIS benchmark enforcement, vulnerability remediation, infrastructure hardening, certificate lifecycle management, and integration with CyberArk, AWS Secrets Manager, and SSM Parameter Store
- Mandatory (Skill) – Must have proficiency in Python, Bash, or PowerShell for automation scripting, with proven ability to build production-grade automation frameworks end-to-end
- Preferred (Skill 1) – Experience with policy-as-code (OPA, Gatekeeper, Conftest) and IaC testing tools (Molecule, Terratest, Checkov, tfsec)
- Preferred (Skill 2) – Experience with multi-account AWS automation, service mesh (Istio/Linkerd), and ITSM integration (SymphonyAI or equivalent — ticketing, approval flows, CMDB updates, change management)
- Preferred (Skill 3) – Experience with AWS cost optimization automation and converting operational runbooks into self-healing diagnostic workflows
Click on Apply to know more.