ClickUp25 дней назад

GTM DevOps Engineer

Полная занятостьУдалёнка

Обязанности

  • 01Design, build, and maintain CI/CD pipelines for Salesforce (SFDX/Salesforce CLI), NetSuite (SuiteScript/SuiteBundler), MuleSoft (Anypoint Platform), and Workato; establish branching strategies, environment promotion standards, and release gating processes across all GTM platforms
  • 02Extend CI/CD practices to cover AI agent workloads deployed on GCP Cloud Run and AWS Bedrock AgentCore — including containerized builds, deployment pipelines, and automated validation gates
  • 03Implement safe rollout patterns — including feature toggles, phased launches, automated validation, smoke tests, and rollback procedures — to reduce deployment risk on business-critical changes
  • 04Own SLA/SLO definitions for core GTM systems; standardize monitoring, alerting, and runbook patterns across quote-to-cash and GTM integrations, with proactive health checks and synthetic monitoring for critical flows (e.g., Salesforce ↔ NetSuite, Workato)
  • 05Extend observability coverage to GCP Cloud Run workloads — Cloud Scheduler jobs, agent pipelines, and integration microservices — and AWS-hosted agent infrastructure
  • 06Conduct root cause analysis (RCA) for platform incidents and drive post-incident reviews with actionable remediation plans
  • 07Manage sandbox, staging, and production environment lifecycles across GTM platforms — including refresh cycles, data masking, environment segmentation, and promotion standards that balance speed with reliability
  • 08Own cloud infrastructure for Business Systems-operated workloads on GCP (Cloud Run, Cloud Scheduler, Cloud Secret Manager, GCS, Artifact Registry) and AWS (Lambda, S3, EventBridge, Secrets Manager, Bedrock AgentCore); apply IaC practices to make provisioning repeatable and auditable
  • 09Establish base image pinning, dependency vulnerability scanning, and supply chain security practices for containerized workloads — particularly AI-generated codebases deployed via tools like Cursor or Claude Code
  • 10Define and enforce patch management and container runtime ownership for vibe-coded and agentic workloads entering production
  • 11Establish and enforce a consistent secrets management standard across all Business Systems workloads — GCP Secret Manager, AWS Secrets Manager, and equivalent — eliminating credential exposure via environment variables, source code, or client-side contexts
  • 12Define and maintain API key rotation policies in alignment with security standards (high-severity keys: quarterly; vendor keys: annually at minimum)
  • 13Partner with Security and IT on IAM scoping, least-privilege service accounts, VPC configuration, and public/private endpoint governance for Cloud Run and Bedrock deployments
  • 14Maintain a centralized registry of deployed workloads — GitHub repos, deployment URLs, architecture docs, data classification, and observability dashboard links — accessible to AppSec and infrastructure teams
  • 15Build internal tooling, automation scripts, and automated testing frameworks (unit, integration, regression) to reduce toil and increase deployment confidence; continuously evaluate new tooling to improve developer experience
  • 16Develop or enforce GitHub repository templates for Cloud Run deployments that cover security audits, deployment configuration, API integration, and MCP server patterns — serving as a reusable foundation for AI-assisted builds
  • 17Define where self-service deployment and administration are appropriate versus where stronger change control and operational guardrails are required; serve as the DevOps SME, enabling developers to operate with autonomy within those boundaries
  • 18Document and maintain operational runbooks, architecture decision records (ADRs), and deployment standards as living artifacts
  • 19Collaborate with IT, Data Engineering, Security, and business stakeholders on cross-functional initiatives that touch the GTM platform

Требования

  • 014+ years in a DevOps, Site Reliability Engineering (SRE), or Platform Engineering role