Senior Devops Engineer

Senior DevOps Engineer NYC, NY – Hybrid Full timePosition Summary: This position is for a Sr. DevOps Engineer focused on CI/CD tooling for the on-premise and AWS infrastructure. This position will work closely with developers, QC and infrastructure teams to build out our in-house and cloud CI/CD pipelines so that developers can build and deploy application in a secure manner. This position will also maintain current DevOps tooling at TCH.Qualifications Required: Advance proficiency in implementing and supporting Infrastructure as Code – proficiency in Terraform, Ansible etc., for managing complex, multi-region cloud environmentsExpert level management of Kubernetes (EKS, AKS) including cluster hardening, service meshes, and custom controllersAbility to design and scale self-healing pipelines using GitHub Actions, GiLab CI, or Jenkins for GitOps WorkflowsDeep architectural knowledge of AWS, Azure specifically regarding cost optimization, compliance, security and high availabilityImplementation of full stack telemetry using ELK stack, Grafana or Datadog to ensure proactive system healthExperience transitioning legacy monolithic architecture into scalable secure MicroservicesIntegration of automated security scanning (SAST/DAST) and compliance-as-code directly into the development lifecycleLead DevSecOps initiatives by automating vulnerability scanning, secret management (HashiCorp Vault), and IAM policy enforcementExperience in working with CICD tools like Jenkins, GitHub, GitHub Actions, Articatory, SonarQube, Fortify, Blackduck, Xray, and AWS tools.Proven track record of working with application engineering teams, conducting code reviews, and establishing internal \"best practices.\"Excellent written and verbal communication skills.Experience in mentoring and working with other team members in an Agile environmentExperience in working in a regulated environment with a Secure-SDLC and implementing check points and processes for building and deploying code within that regulated environment.Qualifications desired:Bachelor’s degree or equivalent professional experienceMinimum 5 years in a DevOps or SRE role, with a track record of managing high -traffic production environmentsExpert level proficiency in AWS and/or AzureDeep expertise in Docker and Certified Kubernetes skillsStrong proficiency in Python, Go, or Ruby for creating custom automation tooling and APIsAdvanced understanding of Linux system administration, kernel tuning, and networking protocols (TCP/IP, HTTP/S, DNS)Understanding of modern security practices, including SOC2 compliance, OIDC, and encryption at rest/transitEssential Functions and Responsibilities:Design and enforce \"Policy as Code\" to ensure infrastructure consistently meets standardsLead the integration of automated security gates (SAST/DAST), image scanning, and vulnerability management into CI/CD pipelinesManage sensitive financial data and credentials using enterprise-grade tools like HashiCorp Vault, AWS Secrets Manager, and Role-Based Access Control (RBAC).Architect multi-region, disaster-recovery-ready environments on AWS to minimize downtime for critical banking transactions