Sr. Infrastructure & Security Engineer
dinCloud Pakistan, An ATSG Company
Date: 2 hours ago
City: Remote
Contract type: Full time
Remote
We are seeking a highly skilled Senior Infrastructure & Security Engineer to join our infrastructure team. This role is critical to ensuring the reliability, scalability, and security of our hybrid cloud environment. You will act as a bridge between development and operations, with a strong focus on automation, security, and system resilience. Your expertise will guide the team in maintaining high-availability systems while continuously improving our infrastructure-as-code practices.
Key Responsibilities
1. Infrastructure & OS Management
Category
Must-Have
OS
Expert in Rocky Linux, CentOS, RHEL (6+ years); Windows Server experience
Security
WAF, vulnerability scanning, LDAP, OS hardening, kernel patching
Automation
Ansible (playbooks, roles, AWX/Tower), Python/Shell scripting
CI/CD & SCM
GitHub Enterprise administration, GitHub Actions, branch protection rules
Containers
Docker (build/security scanning), Kubernetes (deployment, networking, storage)
Web Servers
Apache, Nginx (configuration, SSL, reverse proxy)
Monitoring
Prometheus, Grafana, ELK, or commercial tools (Datadog/New Relic)
Code Security
SAST/DAST tools (SonarQube, Snyk, Checkmarx)
Preferred Qualifications
Key Responsibilities
1. Infrastructure & OS Management
- Manage and maintain Linux-based systems (Rocky Linux, CentOS, RHEL) in production and staging environments.
- Perform kernel patching, security updates, and system hardening following industry best practices.
- Troubleshoot and debug complex OS-level issues (performance, memory, I/O, kernel panics).
- Manage and support Windows Server environments where applicable.
- Perform regular security scanning and vulnerability assessments using tools like Nessus, Qualys, or OpenVAS.
- Conduct code security scans (SAST/DAST) and integrate them into CI/CD pipelines.
- Configure and maintain LDAP authentication for centralized access management.
- Ensure all systems comply with internal security policies and external regulatory standards.
- Implement and manage WAF (Web Application Firewall) configurations to protect against OWASP Top 10 threats.
- Write and maintain Ansible playbooks for automated provisioning, patching, and configuration management.
- Manage GitHub Enterprise repositories, branching strategies, and CI/CD workflows (GitHub Actions preferred).
- Develop automation scripts using Python, Shell, or Go to reduce toil and improve operational efficiency.
- Configure and maintain Apache and Nginx web servers, including performance tuning and reverse proxy setup.
- Troubleshoot web server logs, SSL/TLS issues, and load balancing configurations.
- Deploy, manage, and scale applications on Kubernetes clusters (EKS, AKS, or on-prem).
- Build and maintain Docker images with secure base layers and minimal attack surfaces.
- Monitor cluster health, resource usage, and implement auto-scaling policies.
- Deploy and maintain monitoring tools (Prometheus, Grafana, Datadog, or ELK stack).
- Define SLIs, SLOs, and error budgets; drive blameless post-mortems.
- Participate in on-call rotations and lead incident response efforts.
Category
Must-Have
OS
Expert in Rocky Linux, CentOS, RHEL (6+ years); Windows Server experience
Security
WAF, vulnerability scanning, LDAP, OS hardening, kernel patching
Automation
Ansible (playbooks, roles, AWX/Tower), Python/Shell scripting
CI/CD & SCM
GitHub Enterprise administration, GitHub Actions, branch protection rules
Containers
Docker (build/security scanning), Kubernetes (deployment, networking, storage)
Web Servers
Apache, Nginx (configuration, SSL, reverse proxy)
Monitoring
Prometheus, Grafana, ELK, or commercial tools (Datadog/New Relic)
Code Security
SAST/DAST tools (SonarQube, Snyk, Checkmarx)
Preferred Qualifications
- 8+ years in SRE, DevOps, or Systems Engineering roles.
- Experience with Terraform or other IaC tools.
- Familiarity with service mesh (Istio/Linkerd) and CNI plugins (Calico/Cilium) or similar.
- Understanding of zero-trust networking and SSO integrations.
- Certifications: RHCE, CKA, or CISSP are a plus.
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resumeSimilar jobs
Manager Sales - SMB
Zones IT Solutions,
Remote
2 hours ago
DescriptionCompany Overview:When it comes to IT solution providers, there are a lot of choices. But when it comes to providers with innovative and differentiating end-to-end service offerings, there’s really only one: Zones – First Choice for IT.TMZones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones,...
Project Coordinator (Field)
Zones IT Solutions,
Remote
1 day ago
DescriptionCompany Overview:When it comes to IT solution providers, there are a lot of choices. But when it comes to providers with innovative and differentiating end-to-end service offerings, there’s really only one: Zones – First Choice for IT.TMZones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones,...
Female Sales Executive
Sohail Properties,
Remote
1 day ago
Sohail Properties is a trusted name in Pakistan’s real estate market, specializing in residential and commercial properties across Islamabad, Rawalpindi, and beyond. We are dedicated to helping our clients make informed investment decisions with transparency, integrity, and personalized service.From premium housing projects like Saffron City Islamabad to DHA, Bahria Town, New Metro City Gujar Khan, and other top societies, we...