OpenShiftKubernetes Engineer

Division: Group Technology Solutions (GTS)

About the role:

Were looking for an experienced OpenShift/Kubernetes Engineer to join a focused platform team that designs builds and operates OpenShift clusters in a highly secure disconnected environment. Youll own reliability automation and security endtoendpartnering with squads to onboard applications harden the platform and scale our container infrastructure for regulated workloads.

Responsibilities:

• Operate and maintain OpenShift clusters to ensure availability scalability and performance (including patching upgrades and capacity planning).
• Automate cluster installation and configuration using GitOps Ansible Helm and Operators; codify repeatable workflows and golden patterns.
• Implement platform security best practices and compliance controls; run vulnerability assessments and remediation in line with organizational policies
• Contribute to new cluster and network design including multitenant patterns and service connectivity.
• Support onboarding of new client applications and provide ongoing platform guidance and troubleshooting.
• Build and maintain clear living documentation for operations runbooks standards and reference architectures.
• Deliver within Agile/Scrum ceremonies; collaborate closely with developers SREs and security.
• Work effectively in highly secure disconnected environments including image and content mirroring.
• Provide 24/7 oncall support as part of a rotating team shift schedule including occasional weekend coverage

Required experience & skills:

• Experience: a few years running OpenShift clusters in production ideally in banking or similarly regulated environments.
• Core OpenShift skills: cluster installation upgrades patching and Operator lifecycle management.
• Networking: Understanding of Kubernetes/OpenShift networking concepts including NetworkPolicies and traffic controls..
• Automation: Strong working knowledge of Helm and Ansible with experience applying GitOps principles to manage configuration and lifecycle operations.
• Disconnected operations: Experience operating in restricted environments including content and image mirroring (e.g. ocmirror).
• Everyday tooling: Comfortable with git YAML oc/kubectl bash and Visual Studio Code.

Nice to have / Plus skills

• Observability: Working knowledge of Prometheus and Grafana for monitoring alerting and operational troubleshooting.
• Service Mesh: Red Hat Service Mesh (Istio) fundamentals and operations.
• Container tooling: such as Podman and Skopeo for build debug and image management.
• Infrastructure as Code beyond core automation (e.g. Terraform).
• CI/CD: Working with pipelines (Azure DevOps).
• Experience in working as a power user or system administrator.
• Some basic knowledge in virtualization and HCI: VMware Nutanix/AHV.
• Observability & ITOM: Splunk; ServiceNow and IBM Netcool/Omnibus.
• Artifact management: JFrog Artifactory.

How you work

• Pragmatic SRE mindset with a bias to automate document and standardize.
• Comfortable pairing with developers and security to meet compliance without slowing down delivery.
• Thrives in Agile/Scrum communicates clearly and owns outcomes endtoend.

Please note that this is a permanent position and we do not offer freelance/contract arrangement for the role.

#LI-AK1