DevOps Engineer Nginx, English-speaking

We are looking for a skilled DevOps Engineer with hands- on experience in managing API gateways using OpenResty and Lua, implementing OIDC- based authentication, and deploying containerized applications using Helm into Kubernetes clusters (EKS/AKS). The ideal candidate should also have strong networking knowledge, cloud- native experience, and a solid grasp of modern DevOps practices.
Key Responsibilities:

Design, implement, and manage Nginx configurations to support M2M and H2M pre- authentication.
Document configurations, procedures, and system changes to maintain accurate records and facilitate knowledge sharing.
Monitor, troubleshoot, and resolve Nginx- related issues, ensuring system reliability and performance.
Develop and enforce security policies ensuring robust pre- authentication for M2M and H2M communications.
Build, containerize, and deploy authentication components using Docker and Helm.
Integrate Nginx with identity and access management (IAM) systems, including, OpenID Connect, and SAML.
Manage deployments across AKS and EKS clusters in production and staging environments.
Work closely with security, DevOps, and application teams to ensure seamless integration and high security standards.
Optimize Nginx settings for performance, security, and scalability.
Stay current with the latest Nginx features, security updates, and industry best practices.

Yêu cầu công việc

QUALIFICATIONS AND EXPERIENCE REQUIRED:
Experience:

3+ years of experience with Nginx, including extensive configuration and performance tuning.

Education:

Bachelor’s degree in computer science, Information Technology, or a related field.

Required Qualifications

Strong communication and collaboration abilities.
Experience with IAM systems such as OAuth2, OpenID Connect, and SAML.
Excellent analytical and problem- solving skills.
Strong scripting skills in languages such as Python, Bash, or similar.
In- depth understanding of pre- authentication techniques for both M2M and H2M communications.
Strong knowledge in containerized platforms (Docker/Podman)
Strong knowledge in Linux kernel Systems.

Preferred Qualifications

Networking & Protocols:
Familiarity with reverse proxies, load balancing, and ingress traffic handling.
Strong knowledge of HTTP/HTTPS, including headers, methods, caching, and status codes.
Deep understanding of networking fundamentals (IP, DNS, routing, firewalls, WAF).
Experience with SSL/TLS, certificate management, and secure communication best practices.
Containerization:
Ability to write and optimize Dockerfiles for performance and security.
Experience with Docker for building, managing, and debugging containers.
Understanding of container best practices (e.g., multi- stage builds, image hardening).
Knowledge of container networking, volumes, and logging.
Authentication & Authorization:
Implementing pre- authentication logic in front of internal applications.
Working knowledge of JWTs, scopes, claims, and token validation.
Implementing and troubleshooting OIDC (OpenID Connect) integrations.
Experience integrating with Azure EntraID or other identity providers.
OpenResty & Lua
Writing and maintaining Lua scripts for request handling, authentication, routing, and logging.
Familiarity with Nginx internals and Lua phases in the HTTP request lifecycle.
Hands- on experience managing OpenResty (Nginx + LuaJIT) for custom reverse proxy setups.
Kubernetes (AKS/EKS) & Helm
Writing, templating, and maintaining Helm charts for complex applications.
Understanding of rolling deployments, health checks, and zero- downtime upgrades
Cert- Manager, ExternalDNS
Knowledge of K8s primitives: Deployments, Services, Ingress, ConfigMaps, Secrets, RBAC.
CI/CD & Infrastructure Automation
Exposure to Terraform, focused on Terraform Cloud
Familiarity with CI/CD pipelines for deploying Helm charts and Docker images.
Scripting in Bash, Python, or similar for automation and tooling.

• Annual company trip and various team building activities and appreciation gifts
• We embrace diversity! As an Equal Opportunity Employer, we value strength in diversity and prohibit discrimination in any form
• We support your development and are committed to advancing your career
• Premium health insurance
• 13th- month salary bonus and annual performance bonus
• 15+ days of paid leave per year
• Join a dynamic and fast- growing global network, tackle great challenges with large- scale products, and work with modern technologies
• Hybrid and flexible working environment with attractive benefits
• Hybrid working model and good work- life balance
• English- speaking environment where you will have opportunities to work on global projects and connect with experienced colleagues from around the world
• 100% offered salary and mandatory social insurances in 2- month probation

Cập nhật gần nhất lúc: 2025-11-12 16:25:02