شركة Smart Education LLC تعلن عن وظيفة مهندس DevSecOps في الأردن

About Smart Education LLC:

Smart Education LLC is a leading UAE-based educational distributor specializing in providing high-quality learning and teaching materials for US K-12, Tertiary, and Vocational education, as well as English Language Teaching and Learning resources. Founded by experienced educators from the Middle East, UK, and US, we are committed to delivering regionally specific content that aligns with international standards.

Location: Remote

Employment Type: Full-time / Contract

Experience Level: Mid-Level (3-5 Years)

Department: Platform Engineering & Security

We are looking for a Mid-Level DevSecOps Infrastructure Engineer to design, build, and secure our cloud-native infrastructure. In this role you will embed security into every stage of the software delivery lifecycle-from code commit to production deployment-while keeping our CI/CD pipelines fast, reliable, and compliant. You will work closely with development, security, and operations teams to drive a “shift-left” security culture across the organization.

Key Responsibilities 

Infrastructure & Cloud

• Design, deploy, and maintain scalable infrastructure on AWS and/or GCP, following well-architected framework principles.
• Author and manage Infrastructure as Code (IaC) using Terraform, CloudFormation, or Pulumi to ensure reproducible, version-controlled environments.
• Manage and optimize Kubernetes clusters (EKS, GKE, or AKS) for containerized workloads, including networking, autoscaling, and resource policies.

CI/CD & Automation

• Build and maintain end-to-end CI/CD pipelines using Jenkins, GitHub Actions, or GitLab CI with integrated security gates.
• Develop automation scripts (Python, Bash) for provisioning, configuration management, secret rotation, and incident response runbooks.
• Implement artifact management strategies using container registries (Harbor, ECR, GCR) with image signing and vulnerability scanning.

Security & Compliance

• Integrate SAST, DAST, SCA, and container scanning tools (SonarQube, Trivy, Snyk, OWASP ZAP) into CI/CD pipelines as automated quality gates.
• Implement and enforce RBAC, network policies, pod security standards, and secrets management (Vault, Sealed Secrets, or cloud-native KMS).
• Conduct infrastructure security assessments and remediate findings in alignment with CIS Benchmarks, SOC 2, or ISO 27001 controls.
• Manage WAF rules, TLS certificates, and ingress security configurations across environments.

Observability & Reliability

• Deploy and maintain monitoring, logging, and alerting stacks (Prometheus, Grafana, ELK/EFK, Datadog, Dynatrace, or New Relic).
• Define SLOs/SLIs and build dashboards that give engineering teams actionable visibility into service health and security posture.
• Perform regular database maintenance and optimization for PostgreSQL and other data stores.

Collaboration & Documentation

• Partner with development teams to adopt DevSecOps best practices, including threat modeling and secure coding guidelines.
• Maintain clear, up-to-date runbooks, architecture diagrams, and post-incident reviews.

Required Qualifications 

• Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or a related field (or equivalent practical experience).
• 3-5 years of hands-on experience in DevOps, SRE, or infrastructure engineering with a strong security focus.
• Solid proficiency in at least one major cloud platform (AWS or GCP), including IAM, VPC design, and managed services.
• Production experience with CI/CD platforms (Jenkins, GitHub Actions, or GitLab CI) and pipeline-as-code patterns.
• Working knowledge of containerization (Docker) and orchestration (Kubernetes) in production environments.
• Experience writing Infrastructure as Code with Terraform or CloudFormation.
• Proficiency in Python and/or Bash for automation and tooling.
• Familiarity with at least one security scanning toolchain (SAST, DAST, SCA, or container scanning).
• Understanding of networking fundamentals (DNS, load balancing, firewalls, TLS) and Linux system administration.
• Experience with Git-based workflows, branching strategies, and code review processes.

Preferred Qualifications 

• Relevant certifications: AWS Solutions Architect / Security Specialty, GCP Professional Cloud Security Engineer, CKA/CKAD, or CompTIA Security+.
• Experience with secrets management tools (HashiCorp Vault, AWS Secrets Manager) and policy-as-code frameworks (OPA, Kyverno).
• Hands-on knowledge of service mesh technologies (Istio, Linkerd) or API gateways (Kong, Envoy).
• Familiarity with compliance frameworks (SOC 2, ISO 27001, HIPAA) and audit preparation.
• Experience with GitOps workflows (ArgoCD, Flux) and progressive delivery strategies.
• Background in vulnerability management platforms (DefectDojo, Snyk Dashboard) for aggregation and triage.

What We Offer 

• Flexible, remote-first working arrangement with async-friendly collaboration.
• Opportunity to shape security culture and DevSecOps practices from the ground up.
• Exposure to a modern cloud-native stack with real ownership over infrastructure decisions.
• Budget for professional development, certifications, and conference attendance.
• A collaborative, engineering-driven team that values continuous improvement.

How to Apply:

Send your updated CV along with a brief cover note highlighting your most impactful DevSecOps project to Edry@smarteducation.ae. Please include links to any relevant public repositories, blog posts, or certifications.

Join our team and be part of a dynamic, innovative company!

We are an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all team members across our global workforce.