Job Description

We're Hiring | DevSecOps / Site Reliability Engineer (SRE)

Location: Cairo Employment Type: Full-time (Onsite) Reports To: Head of Platform Engineering
Role Overview

We are seeking a highly skilled DevSecOps / SRE Engineer to strengthen our infrastructure reliability, security posture, and compliance automation.

The ideal candidate will have hands-on experience across the DevSecOps spectrum -- infrastructure as code, observability, identity management, GitOps, and cloud-native security.

This role requires a deep understanding of secure system design, automation, and continuous improvement of SLAs and SLOs.

Key Responsibilities

Design, implement, and maintain secure, scalable, and observable infrastructure using IaC tools such as Ansible and Terraform. Integrate and manage OAuth2/OIDC identity systems (preferably Keycloak) for secure authentication and authorization. Build and manage GitOps workflows using ArgoCD for automated and auditable deployments. Develop and maintain observability pipelines for logs, metrics, and traces using Grafana, Loki, Tempo, and Prometheus. Implement and monitor SLAs, SLOs, and SLIs to ensure reliability and system availability. Enforce and automate security governance through Policy as Code frameworks (Kyverno, OPA, Falco). Drive Compliance as Code initiatives, integrating continuous scanning and validation of configurations. Use tools like SonarQube and OWASP ZAP for continuous code and application security testing. Collaborate with development and operations teams to embed security and compliance into CI/CD pipelines. Contribute to IAM governance and ensure consistent enforcement of access and privilege management. Participate in incident response and root cause analysis to enhance reliability and security.
Required Qualifications

Certified Kubernetes Security Specialist (CKS) is mandatory. Proven experience as a DevSecOps or SRE Engineer in production environments. Hands-on experience with: OAuth2/OIDC and Keycloak SonarQube, OWASP ZAP Grafana LGTM Stack (Loki, Grafana, Tempo, Mimir/Prometheus) ArgoCD and GitOps principles Ansible and Terraform Kyverno, Falco, or similar security enforcement tools Strong understanding of IAM, Governance, Policy-as-Code, and Compliance-as-a-Service. Familiarity with SLI/SLO/SLA design and tracking. Strong scripting skills (Bash, Python, or Go). Excellent communication and documentation skills.
Nice to Have

Experience with CIS Benchmarks, NIST, or ISO 27001 compliance automation.

Exposure to Service Mesh and Zero Trust Architectures.

Contributions to open-source DevSecOps or observability projects.

Job Type: Full-time

Application Question(s):

Experience with CIS Benchmarks, NIST, or ISO 27001 compliance automation. Exposure to Service Mesh and Zero Trust Architectures.
Experience:

DevSecOps / Site Reliability Engineer (SRE): 3 years (Required)
Language:

English (Required) * Arabic (Preferred)