Login Sign Up
🔔 FCM Loaded

DevOps / Release Engineer

Quantum Integrators

2 - 5 years

Pune

Posted: 20/02/2026

Getting a referral is 5x more effective than applying directly

Job Description

Role: DevOps / Release Engineer Secure Package Deployment & CI/CD


Location: Pune/Nagpur, MH- Onsite from day one


Joining Timeline: Within 30 days of offer confirmation (immediate joiners preferred)


Job type: Full Time


Short summary:

  • Seeking a DevOps/Release Engineer to design and deliver a CI/CD pipeline that deploys approved packages without requiring elevated privileges on targets, enforces an allowlist of packages, and blocks direct internet downloads by using internal artifact delivery and strict verification.


Role overview:

  • You will build and operate a secure, auditable package deployment pipeline that ensures only approved artifacts are installed, installs occur without requiring root/sudo on target systems, and no direct internet downloads are allowed from target hosts. Collaborate with security, compliance, and operations teams to implement allowlisting, artifact provenance checks, RBAC, and audit logging.


Key responsibilities:

  • Design, implement, and operate CI/CD pipelines that deliver packages from internal artifact stores to target hosts without requiring elevated privileges on the target.
  • Enforce allowlist/whitelist policies for package identities (artifact IDs, versions, checksums, signatures).
  • Prevent direct internet downloads on target hosts by using controlled artifact retrieval (CI/CD agent pull, internal proxy, or approved artifact relay).
  • Implement integrity and provenance checks (sha256 checksums, GPG signatures, binary provenance) as gate criteria in pipelines.
  • Ensure secure secrets handling (Jenkins credentials, Vault) and strict RBAC for pipeline operations and artifact retrieval.
  • Build idempotent, retryable deployment automation (Ansible/other) that performs user-space installs or uses privileged agents only within controlled boundaries.
  • Provide robust logging, audit trails, and monitoring for deployments and policy enforcement; integrate with SIEM/ITSM as required.
  • Create runbooks, rollback procedures, and onboarding docs for new applications and teams.
  • Work with compliance and change-control processes to maintain required approvals and traceability.


Required qualifications:

  • 5+ years hands-on experience in DevOps, Release Engineering, or SRE roles.
  • Strong Linux administration and packaging knowledge (rpm/deb, package formats) and experience implementing non-root/user-space installation approaches.
  • Proven experience designing and operating CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions, or Azure DevOps).
  • Experience with configuration management and automation (Ansible preferred, or similar).
  • Hands-on experience with artifact repositories and controlled distribution (Artifactory, Nexus, internal repos).
  • Familiarity with integrity verification (checksums, GPG signatures) and provenance concepts.
  • Experience with secrets management (HashiCorp Vault, cloud KMS) and secret injection in pipelines.
  • Strong understanding of networking constraints and how to prevent direct internet access from target hosts (proxies, deny-lists, egress controls).
  • Demonstrated ability to work with security/compliance teams and follow change-control processes.

Services you might be interested in

Improve Your Resume Today

Boost your chances with professional resume services!

Get expert-reviewed, ATS-optimized resumes tailored for your experience level. Start your journey now.

getmereferred logo Know more