Key skills
AWSAzureKubernetesCI/CDGitOpsTerraformSecrets ManagementObservabilityWindowsLinuxProactive MindsetIncident ManagementProgrammingCommunicationCollaborationJavaScriptTypeScriptPython.NETSnowflakeEKSAKSHelmRancherEntra IDSSOPrometheusGrafanaGitHubGitLabVersion ControlSaaS
About this role
Zywave is a company that empowers insurers and brokers to thrive in today’s escalating risk landscape. They are seeking a Senior DevSecOps Engineer to join their Platform Engineering team, responsible for designing, building, and maintaining cloud and on-premise hosting environments with a focus on Kubernetes operations, cloud infrastructure management, and security compliance.
Responsibilities:
- Design, deploy, and maintain scalable environments in AWS and Azure
- Own and evolve Zywave’s hub-and-spoke networking model
- Build and improve repeatable patterns for secure infrastructure provisioning
- Drive cost monitoring and optimization of cloud spend
- Manage Kubernetes clusters across EKS, AKS, and on-prem Rancher
- Implement secure multitenancy and isolation strategies (namespaces, pods, nodes)
- Oversee provisioning, scaling, monitoring, upgrades, and troubleshooting
- Maintain and optimize GitLab/GitHub pipelines for reliable production deployments
- Implement GitOps workflows with Argo CD for consistent, automated deployments
- Leverage Argo Workflows for complex automation and orchestration needs
- Improve release automation, including Helm-based deployment flows
- Implement and maintain monitoring, logging, and tracing systems (Prometheus, Grafana, OTEL, Observe Inc)
- Ensure uptime and performance through proactive reliability practices
- Participate in incident response, including on-call rotation and leading postmortems
- Integrate secrets management solutions
- Ensure environments meet compliance and security best practices
- Support SSO and SCIM configuration with Azure Entra ID and other SaaS integrations
- Manage and troubleshoot Windows and Linux hosting systems, including IIS
- Apply expertise in enterprise storage and networking, including object/file storage
- Support containerization strategies and patterns
- Strong collaboration skills across engineering, security, and operations teams
- Clear and concise communication, both written and verbal
- Comfort participating in and leading technical discussions and incident reviews
- Proactive mindset—able to identify issues and drive solutions independently or as part of a team
Requirements:
- Ability to quickly absorb new technologies and concepts, with the flexibility to learn whatever is necessary to solve problems effectively
- Strong experience with cloud computing (AWS, Azure)
- Hands-on expertise with Kubernetes (EKS, AKS, Rancher) and Helm
- Practical background in CI/CD pipelines and deployment automation
- Familiarity with GitOps tooling (Argo CD) and workflow orchestration (Argo Workflows)
- Proficiency in infrastructure as code (Terraform)
- Working knowledge of Windows/Linux hosting, IIS, and containerized workloads
- Strong understanding of observability stacks (Prometheus, Grafana, OTEL)
- Experience with version control systems (GitLab, GitHub)
- Strong understanding of security, identity (Azure Entra ID), and secrets management
- Programming ability in at least one of: .NET, Python, TypeScript/JavaScript
- Exposure to Snowflake and enterprise data platforms
- Experience with enterprise networking and storage architectures
- Incident management and on-call participation history
- Cost optimization in large-scale cloud environments