Devops engineer

Overview

Own and evolve our Jenkins Shared Library powering multi-language builds (Java/Maven, Node/NPM, Python, Helm, Terraform, containers). Deliver fast, secure, provenance-rich pipelines (SLSA, SBOM, digests) and strengthen supplychain integrity across teams.


Responsibilities

1. Design and maintain Groovy pipeline steps (build, test, package, scan, deploy).
2. Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ, SAST/Container).
3. Optimize performance (parallel builds, caching, scope-reduced BOMs, dependency prefetch).
4. Ensure artifact integrity (correct SHA1/SHA256 mapping, reproducible inputs, evidence modeling).
5. Refactor legacy scripts (remove global state, consolidate hashing, standardise templates).
6. Document ci-config.yaml standards and usage patterns.
7. Mentor engineers on secure pipeline development and supply-chain practices.
8. Troubleshoot and prevent pipeline incidents.


Your Profile


Essential skills/knowledge/experience

1. 7+ years of engineering; 3+ years in CI/CD platform or DevSecOps.
2. Strong Jenkins + Groovy shared library expertise.
3. Advanced Python automation (JSON/YAML processing, tooling scripts).
4. Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata.
5. Experience with SonarQube, Sonatype IQ, container and SAST scanning.
6. Proven performance tuning (caching, parallelization, dependency pruning).
7. Compliance Awareness.
8. Terraform module and Helm chart publishing patterns.
9. GitOps or release automation experience.
#J-18808-Ljbffr