Senior Build & DevOps Engineer
Senior Build & DevOps Engineer
Posted on :
04-09-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Role summary:
Be an integral part of our enterprise-scale migration from Bitbucket to Github Enterprise Cloud (GHEC) design and roll out GitHub Actions based CI/CD and establish secure complaint and observable build/release pipelines for a 300-developer organization in the healthcare domain. You will be the technical owner for source control strategy build infrastructure and release automation and an emphasis on reliability speed and HIPAA/SOC2 compliance.
What you’ll do:
- Plan & execute the migration
- Inventory repos pipelines users secrets and integrations; define cutover strategy and rollback plans.
- Migrate code issues and CI from Bitbucket to GHEC with minimal downtime script repeatable migration runbooks.
- Normalize repository standards (branch naming default branches protection rules CODEOWNERS templates)
- Design CI/CD on GitHub Actions
- Architect multistage pipelines (build->test-->security scans-->artifact publish--->deploy)
- Implement reusable workflows composite actions and organization-level workflow templates.
- Set up self-hosted runners and autoscaling runner fleets(containerized/ephemeral) for Linux/windows/macOS as needed.
- Establish secret management via OIDC to cloud providers; remove long live credentials.
- Security & compliance for healthcare
- Enable GitHub Advanced security (Code scanning Dependabot secret scanning)
- Enforce SSO/SAML branch protection required checks signed commits and PR review policies.
- Implement policy-as-code (e.g. Open policy agent repo/rule sets) change-management controls and audit-ready logs.
- Ensure pipelines and artifacts are aligned with HIPAA SOC2 GDPR and least privilege principles avoid PHI in logs.
- Build & release engineering
- Standardize build images caching and artifact storage; speed up CI with dependency caches and test parallelization.
- Create environment promotion flows (dev/stage/prod) with approvals and progressive delivery (canary/blue green)
- Integrate QA automation performance tests and SAST/DAST into pipelines.
- Observability & reliability
- Define and track DORA metrics (lead time deployment frequency MTTR change failure rate)
- Add telemetry for pipeline duration queue times and flake rates; publish dashboards and SLAs for CI.
- Change management & enablement
- Drive communications training and documentation; run office hours and migration pilots.
- Partner with security compliance SRE and product teams;
Required Qualifications:
- 6 years in Build/Release/DevOps/Platform Engineering; 2 years leading large SCM/CI migrations.
- Proven previous experience of migrating code from Bitbucket to GitHub Enterprise cloud.
- Expert with Git GitHub Enterprise Cloud and GitHub Actions at organization scale.
- Proven experience running self-hosted/ephemeral runners and tuning CI performance.
- Strong CI/CD for polyglot stacks (Java/ Node Python mobile)
- Hands on with artifact registries (GitHub packages/Artifactory) Iac (Terraform) containers (Docker) and one major cloud (AWS/Azure/GCP) preferably Azure.
- Security background: branch protection CODEOWNERS signed artifacts SBOMs dependency governance secrets handling (ODIC)
- Healthcare or other regulated industry experience; understanding of HIPAA controls and audit requirements.
- Excellent scripting (Bash/PowerShell) and one high level language (Python/Go)
- Bitbucket to GitHub migrations using enterprise importers; Jira/GitHub Projects integrations.
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
