Appfire builds next-generation enterprise collaboration solutions to liberate teams from silos and make work flow. By extending and enhancing what’s possible on platforms like Atlassian, Microsoft, Monday.com, Salesforce and more, Appfire enables companies to increase value from the many platforms they’ve invested in. Appfire empowers today’s knowledge workers to plan and deliver their best work. Appfire’s portfolio of top-selling apps serves more than 20,000 customers – including 55% of the Fortune 500. As a product-led company, Appfire identifies gaps in industries serving knowledge workers and then builds solutions that drive productivity and efficiency.

Appfire continues to grow exponentially, with teams spanning 20+ countries. We are financially strong, profitable since inception, continuously meeting or exceeding revenue targets, and we invest heavily in strengthening the foundation of our organization. Being philanthropic is integral to operating our business, so we donate 1% of employee time, product, profit, and equity as part of our Pledge 1% commitment.

Come join our team!

Job Purpose and Overview

Senior DevOps Engineers are in charge of implementing and analyzing complex systems for development, which includes planning, development, testing, documenting, and deployment processes for both development and production environments.

Strong organizational skills and the ability to multitask on separate projects are important, and their main responsibilities often focus on systems design, automation, and maintenance. They also troubleshoot, problems, manage risks, and schedule deadlines for technical deliveries.

What you will do

5 to 7 years experience in DevOps and cloud platform
Lead security initiatives, including threat modelling, vulnerability assessments, and security audits.
Implement and manage security controls, policies, and procedures to mitigate risks.
Monitor security systems and respond to security incidents in a timely manner.
Utilize security tools such as Wiz, Rapid7, and SentinelOne for vulnerability management, threat detection, and incident response.
Develop and maintain patch management strategies for servers, applications, and infrastructure components.
Coordinate and perform regular patching and upgrades to ensure system reliability and compliance with security standards.
Utilize tools such as Ansible, Puppet, or Chef for automated patch management and configuration management.
Demonstrate a strong understanding of OWASP principles and guidelines for web application security.
Implement security controls to mitigate OWASP Top Ten risks in web applications.
Hands-on Linux Administration knowledge, SCA, DAST, and SAST testing.
Design and implement access control mechanisms for systems, networks, and applications.
Manage user access, permissions, and authentication methods in compliance with security policies.
Coordinate application testing renewals, upgrades, and expansions in collaboration with vendors and stakeholders.
Establish backup, archival, and recovery procedures for critical data and systems.
Provide technical support and assistance to end-users through the Jira Service Management (JSM) portal.
Troubleshoot and resolve IT-related issues reported by users in a timely and efficient manner.
Collaborate with finance and procurement teams to optimize cloud resource usage and costs.
Implement cost management strategies, including budgeting, forecasting, and optimization.

What we would like to see

Strong understanding of DevOps principles, practices, and methodologies, including continuous integration (CI), continuous delivery (CD), and infrastructure as code (IaC)
In-depth knowledge of security best practices and principles, including secure coding practices, vulnerability management, threat modeling, and security testing methodologies.
Proficiency in using DevOps tools and technologies, such as Docker, Kubernetes, Jenkins, GitHub CI/CD, Terraform, Ansible, Chef, Puppet, and other automation and orchestration tools.
Experience with securing cloud-based environments (e.g., AWS, Azure, Google Cloud Platform) and implementing security controls in cloud-native applications and infrastructure.
Familiarity with container security concepts and tools, including Docker security, container scanning, image signing, and runtime protection mechanisms
Knowledge of securing infrastructure components such as networks, servers, databases, and APIs, including configuration management, access controls, encryption, and monitoring
Proficiency in security monitoring and incident response procedures, including log analysis, threat detection, incident triage, and incident response planning and execution.
Proficiency in scripting and automation using languages like Python, Bash, or PowerShell.
Knowledge of software development methodologies and practices, including Agile and DevOps.
Familiarity with database technologies such as MySQL, PostgreSQL, MongoDB, or Redis.
Knowledge of monitoring and logging solutions such as Prometheus, Sumologic, Grafana, ELK stack, or similar.
Excellent problem-solving skills and ability to troubleshoot complex issues in production environments.
Strong communication and collaboration skills, with the ability to work effectively in a team environment
Must Have
1. AWS
2. DevSecOps
3. CI/CD (Bitbucket, Jenkins, GitHub)
Nice to Have
1. GCP or Azure
2. Heroku

What we offer

Every Appfire employee is eligible for company equity
Remote Work – flexibility to work from home or from our offices + remote working allowance up to INR 12,000 per annum (paid monthly)
Unlimited paid sick leave in the event of an employee’s own illness or injury
Generous vacation policy
Group Medical Insurance – Coverage of INR 5,00,000 per annum for a family including dependents parents with no additional cost
Crèche benefit
Training and development – access to a comprehensive library of training videos

#LI-Remote

Apply for this Job

* Required

First Name *

Last Name *

Email *

Phone *

Resume/CV *

(File types: pdf, doc, docx, txt, rtf)

Cover Letter

(File types: pdf, doc, docx, txt, rtf)

LinkedIn Profile

The Privacy Notice available at https://appfire.com/privacy-notice/ details how Appfire and its affiliates process your data in connection with Appfire career opportunities. Please indicate that you have read and acknowledge the terms. *

Appfire is only able to hire candidates who are currently located in and eligible to work without sponsorship in the countries listed below. Please select which location you are physically located and seeking employment in. *

Are you eligible to work in the country you are applying for without requiring any sponsorship? *

What is your current Compensation? *

What is your desired compensation? *

Please define your desired compensation in your local currency.

When is your first available start date? *

What is your current location? *

What is your total experience in DevOps Engineer? *

What is your experience in DevSecOps? *

What is your experience in cloud platforms in AWS? *

What is your expertise in CI/CD (Bitbucket, Jenkins, GitHub)? *

Experience in scripting and automation using languages like Python, Bash, or PowerShell? *

What are the infrastructure as code (IaC) tools like Terraform, Ansible, or CloudFormation experience do you have? *

Our system has flagged this application as potentially being associated with bot traffic. Please turn off any VPNs, clear your browser cache and cookies, or try submitting your application in a different browser. If this issue persists, please reach out to our support team via our help center.

Please complete the reCAPTCHA above.

Senior DevOps Engineer (DevSecOps)

Must Have

Nice to Have

Apply for this Job