Site Reliability Engineer maintaining and optimizing cloud infrastructure for Tecsys. Collaborating with engineering teams to drive reliability and performance in mission - critical SaaS environments.
About the role
- Google Cloud IAM DevOps Engineer focusing on secure identity and access management automation on GCP. Responsibilities include designing IAM architectures and automating certificate management.
Responsibilities
- Design and implement secure IAM architectures on Google Cloud
- Manage IAM roles, policies, and permissions using least privilege principles
- Create and maintain Service Accounts and Service Account key policies
- Implement Workload Identity Pools and Providers for external workloads accessing GCP securely
- Implement Workforce Identity Federation to allow enterprise workforce authentication without service account keys
- Design and manage X509 certificate based authentication systems for workloads and external integrations
- Implement certificate lifecycle management including issuance, rotation, and revocation
- Automate certificate provisioning and renewal processes
- Integrate certificate authentication with identity federation and secure workload authentication
- Develop reusable Terraform modules to automate IAM and identity federation infrastructure
- Implement GitHub Actions pipelines to deploy and manage IAM configurations
- Maintain automated pipelines for IAM resource provisioning
- Develop automation tools using Python and Shell scripting
- Use scripting to automate IAM role audits, Service account lifecycle management, Certificate provisioning and rotation
Requirements
- Google Cloud
- Strong hands on experience with: Google Cloud IAM, Service Accounts, Workload Identity Pools, Workload Identity Federation
- Workforce Identity Federation
- DevOps Infrastructure as Code
- Terraform Module development
- IAM resource automation
- Infrastructure lifecycle management
- GitHub Actions CICD pipeline creation
- Infrastructure deployment automation
- Programming Automation: Python, Shell scripting, Bash
- Security Identity: Identity federation, OIDC, SAML, X509 certificate management, Certificate lifecycle management, Secure authentication architectures, Least privilege access models
- Preferred Qualifications: Experience integrating with enterprise identity providers (Okta, Azure AD, Ping, etc.)
- Familiarity with PKI infrastructure and certificate authorities
- Experience building IAM automation platforms at enterprise scale
- Experience implementing certificate based workload authentication
- Enterprise scale Google Cloud IAM automation
- Identity federation platforms
- X509 certificate based authentication solutions
- Secure CICD pipelines for cloud identity provisioning
- Infrastructure as Code driven IAM governance
Benefits
- Paid time off based on employee grade (A-F), defined by policy: Vacation: 12-25 days, depending on grade
- Company paid holidays
- Personal Days
- Sick Leave
- Medical, dental, and vision coverage (or provincial healthcare coordination in Canada)
- Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada)
- Life and disability insurance
- Employee assistance programs
- Other benefits as provided by local policy and eligibility
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
DevOps Engineer responsible for maintaining corporate IT systems and cloud infrastructure. Collaborating with business teams to deliver technology - driven solutions.
Engineering Manager leading Site Reliability Engineers in developing reliable cloud infrastructure at Tempo. Ensure stability, cost efficiency, and effective team management in a SaaS environment.
Senior Site Reliability Engineer with Python infra - as - code for Cloud operations at Canonical. Enabling devsecops for applications on OpenStack and Kubernetes in a remote global environment.
Site Reliability / Gitops Engineer supporting and maintaining Canonical’s IT production services. Automating operations with Infrastructure as Code for private and public cloud environments.
DevOps Engineer optimizing CI/CD processes and maintaining AWS cloud infrastructure. Collaborative role focusing on automation, scalability, and cost optimization in cloud technologies.
Site Reliability Engineer at BMO focusing on code deployment, IT operations, and system reliability through automation and monitoring. Collaborating between development and operations teams to improve service health.
DevOps Engineer supporting NY operations from Canada for a global software services provider. Focused on developing and deploying services in a collaborative environment with various technical stacks.
Build & Release Engineer managing CI/CD infrastructure and release automation leveraging AI at League. Ensuring build reliability and improving developer productivity across platforms.
Senior DevOps Engineer building the next - generation methane sensing platform at Sensirion. Collaborating with software developers and engineers to deliver innovative IoT solutions.