Senior DevOps Engineer

About iTradeNetwork

At iTradeNetwork, we provide advanced supply chain software and insights tailored to the food & beverage industry. Our mission is clear and ambitious: To feed the world. From the start, we’ve been dedicated to tackling the most pressing challenges within food and beverage supply chains, delivering innovative solutions and expert support that make a measurable impact.

Our cutting-edge technology helps businesses streamline complex procurement and fulfillment processes, minimize food waste, optimize inventory, manage compliance risk, and scale profitably. We’re proud to serve an elite customer base, including 13 of the top 25 North American grocers, 8 of the top 10 foodservice distributors, and 8 of the top 10 global food and beverage manufacturers.

JOB SUMMARY

We are seeking a highly skilled Sr. DevOps Engineer to join our operations and security engineering team and help design, build and operate reliable, scalable, and secure cloud and on-prem infrastructure. This role is DevOps-first, with a strong emphasis on automation, CI/CD and platform reliability, while working closely with Security (SecOps) to ensure security is embedded naturally into every stage of the SDLC  and operations workflows.

You will partner with application engineering, security and operations teams to enable high-velocity software delivery, resilient systems, and well-architectured infrastructure across cloud and on-premise environments. You may also serve as a technical advisor on infrastructure, networking, and security design, helping teams make pragmatic, scalable decisions.  

Key Responsibilities:

Core DevOps  - Automation, CI/CD & Infrastructure as Code (Primary Focus)

• Build and optimize CI/CD pipelines using Bitbucket, GitHub Actions, GitLab CI, Jenkins, Cloud Build or cloud-native tooling.
• Automate cloud infrastructure provisioning using Terraform, Helm, Kubernetes Operators, or Crossplane.
• Develop automation for operational activities using Python, Go, or Bash, promoting reusable and modular code.

Cloud & Container Platform Engineering

• Design, secure, and operate Google Cloud Platform (GCP) environments (Compute Engine, GKE, Cloud SQL, Cloud Storage, VPC, IAM, Pub/Sub, Cloud Build, Cloud Run).
• Manage multi-environment Kubernetes clusters across dev, QA, staging, and production.
• Implement and maintain service mesh (Istio/Linkerd), API gateways, ingress controllers, and workload identity protections.
• Build internal platform tooling aligned with platform engineering best practices, self-service deployments, golden paths, reusable blueprints.

Security Integration & Governance

• Integrate security-as-code into CI/CD using tools such as Snyk, Trivy, GitLab/GitHub Advanced Security, Checkov, OPA, or Aqua.
• Implement supply chain security controls including SBOM generation, dependency scanning, secrets scanning, signed artifacts, and CI/CD hardening.
• Lead threat modeling, secure design reviews, automated code scanning, and periodic penetration testing.
• Manage and improve Zero Trust security controls, identity and access policies, secrets management (Vault, Google Secrets Manager), and workload identity.

Data Center Operations, Security & Compliance

• Administer and harden Linux and Windows server environments, covering OS provisioning, patching
• Performance tuning, certificate management, and vulnerability remediation.
• Implement and maintain backup and disaster recovery solutions, including backup policies, replication, restore testing, and RPO/RTO compliance.
• Deploy and enforce Zero Trust security architectures within the data center, including network segmentation, identity-based access controls, MFA integration, and secure application exposure.
• Manage email infrastructure and external vendors, handling technical escalations, SLA adherence, capacity planning, licensing, and security compliance.

Observability, Monitoring & Reliability

• Implement full-stack observability solutions using Prometheus, Grafana, Elastic, OpenTelemetry, Datadog.
• Improve logging, tracing, metrics, SLO/SLI dashboards, and alerting playbooks.
• Perform performance tuning, root-cause analysis, and increase system resilience via automation, chaos testing, and runbook improvements.

AI-Enabled DevOps

• Leverage AI/ML-assisted operations such as anomaly detection, predictive scaling, log intelligence, and automated remediation platforms.
• Integrate AI tools to improve CI/CD testing, code scanning, and vulnerability management workflows.

Advisory & Cross-Team Collaboration

• Act as a bridge between Engineering, Security, Compliance, and Operations teams.
• Provide technical guidance during architecture design, code deployments, and cloud migrations.
• Participate in on-call rotation and help drive post-incident reviews and reliability improvements.

What you’ll need:

• Bachelor’s degree in Computer Science, Engineering, Information Systems, or equivalent experience.
• 10+ years of experience in DevOps, cloud engineering, systems engineering, or security engineering.
• Proficiency with modern scripting/programming: Python, Go, Bash, or equivalent.
• Strong experience with Kubernetes, container orchestration, Docker, and cloud-native deployments.
• Hands-on experience with GCP, or other major clouds (AWS/Azure) with willingness to specialize in GCP.
• Deep knowledge of Terraform, Helm, or other IaC and GitOps tools (ArgoCD, Flux).
• Understanding of microservices architectures, API security, and distributed systems.
• Familiarity with security frameworks (OWASP ASVS, NIST, CIS, ISO 27001).
• Direct experience with vulnerability management, container scanning, SBOMs, secret management.
• Experience with identity and access management, Zero Trust models, and cloud security posture management (CSPM).
• Experience with Cloudflare, IAM, vulnerability management, and modern security frameworks.
• Strong background in CI/CD automation, configuration management, cloud networking, and system performance tuning.
• Experience with monitoring, observability, and SRE practices.
• Ability to troubleshoot complex issues spanning app code, infra, networking, CI/CD, and security layers.

Nice-to-Have Qualifications:

• Relevant certifications a plus (GCP Professional Cloud Engineer, Kubernetes CKAD/CKA, Security+ / CISSP / GIAC / OSCP)

If you are a highly motivated and results-driven individual, with a passion for driving growth in a fast-paced, entrepreneurial environment,  we encourage you to apply for this exciting opportunity. We offer a competitive salary, comprehensive benefits package, and a dynamic work culture that values collaboration, innovation, and personal development.

 

Base Compensation: $147,000 - $165,951

Why you will love working here:

• Competitive salary packages
• Comprehensive medical, dental, vision, and life insurance benefits for you and your family
• Flex PTO for exempt employees and competitive PTO for non-exempt
• Paid parental leave for eligible employees
• 401(k) matching
• Tuition reimbursement on approved programs
• Great health & well-being benefits including Teladoc for general medical and mental health care

These benefits are only applicable to full-time employees

All iTradeNetwork positions are hybrid unless listed otherwise; candidates must be located in the hub(s) listed.

Additional Requirements:

• Must be able to demonstrate lawful ability to work in the United States

iTradeNetwork, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran by applicable federal, state and local laws. We especially invite women, minorities, veterans, and individuals with disabilities to apply. EEO/AA/M/F/Vet/Disability