Job Description

Must Have:

Please focus on the bolded technologies in the Experience and skill set requirements.

Experience and Skill Set Requirements

Mobile Wallet and Infrastructure Deployment – 30%

• Implement automated delivery pipelines for digital credentials mobile wallet builds, ensuring consistent signing, versioning, and distribution through CI/CD processes.
• Support publication and lifecycle management of mobile wallet applications in the Apple App Store and Google Play Store, ensuring compliance with platform requirements, signing procedures, and release governance.
• Collaborate with product managers, technical lead, mobile developers and testers to coordinate release readiness, testing cycles, staged rollouts, and monitoring of app health across stores.
• Design and implement backend app attestation infrastructure enabling validation of mobile wallet integrity using Apple App Attest and Google Play Integrity API Implement push notifications using tools such as Firebase.
• Collaborate with mobile engineering teams to embed attestation logic into wallet apps, strengthen anti‑tampering controls, and enhance overall platform security posture.

DevSecOps, CI/CD Automation & Engineering Quality – 30%

• Build, maintain, and optimize CI/CD pipelines using tools such as Azure DevOps, Fastlane, BrowserStack, Codemagic, for both backend and wallet-related services, including automated testing, container builds, artifact management, and deployment approvals.

· Implement load-testing and performance benchmarking using tools such as Locust or JMeter to validate system scalability under peak credential issuance and verification loads.

• Enforce SDLC, code quality, and DevOps best practices—including code reviews, secure Integrate DevSecOps practices into all CI/CD workflows, embedding security scanning, SAST/DAST, secret detection, and container image scanning into pipelines.
• Manage secure configuration of infrastructure including TLS certificate rotation, secret management, encryption policies, network segmentation, and hardened OS baselines.
• Work with teams to implement identity and access management, privileged access controls, threat modeling, and continuous compliance monitoring.
• Conduct regular infrastructure hardening, patching, library updates, dependency audits, and vulnerability remediation cycles for wallet, agent, and backend components.
• Experience with scripting languages like Python and Bash
• Ensure alignment with digital identity trust frameworks (PCTF, NIST, eIDAS) and enterprise cybersecurity policies.

Cloud Architecture, Platform Engineering & Infrastructure-as-Code – 25%

· An expert in architecting, building, and maintaining Azure cloud infrastructure that supports the digital credential platform, ensuring high availability, resilience, and secure multi‑environment deployments.

• Build and manage containerized workloads using DockerPodman, applying secure image management, registry automation, and runtime hardening.
• Design and operate Kubernetes production clusters (AKS/OpenShift), including workload orchestration, scaling policies, RBAC, network rules, and automated failover.
• Develop and maintain infrastructure‑as‑code using Terraform, Ansible, and related tooling to ensure consistent, auditable, and automated environment provisioning.
• Support backend components interacting with relational databases (e.g., PostgreSQL, MySQL) through secure connections and optimized queries.
• Operate and integrate event‑driven architectures, caching mechanism, job schedulers and asynchronous messaging systems.
• In-depth knowledge of Azure networking, VNETs, ingress controllers, firewalls, and identity integrations to support secure and compliant services.
• Proven experience designing modern architectural patterns to support delivery of complex IT solutions that are reliable, secure, responsive and scalable.
• Experience applying industry cloud and security standards and best practices to your work that can be adopted by others.

Observability, Monitoring & System Insights – 10%

• Implement and maintain observability stacks using Prometheus, Grafana, Azure Log Analytics, or equivalent tools, ensuring end‑to‑end visibility across services.

· Integrate crash analytics tools (e.g., Firebase Crashlytics, App Center) into the DevOps workflow to monitor wallet stability, identify crash trends, and support continuous reliability improvements.

· Define dashboards, alerting rules, incident playbooks, SLIs/SLOs, and health checks to support high‑availability identity workloads.

• Conduct root‑cause analysis and drive long‑term reliability improvements across cloud, container, and wallet infrastructure components.

Collaboration, Documentation & Agile Delivery – 5%

• Work closely with architects, wallet/mobile developers, automation engineers, cybersecurity teams, and enterprise stakeholders to ensure cohesive solution delivery.
• Produce and maintain documentation including diagrams, deployment architectures, operational runbooks, method of procedures, and troubleshooting playbooks.
• Participate in Agile ceremonies and contribute to planning, release coordination, and cross‑team technical alignment.
• Mentor team members in cloud engineering, DevOps automation, Kubernetes operations, and secure deployment practices.