DevOps Engineer – Blockchain Digital Assets Platfo

Role Summary We are looking for an experienced **DevOps Engineer** to design, implement, and maintain our cloud infrastructure, CI/CD pipelines, and security practices. You will work across multiple **blockchain-based** product lines (STO, crypto exchange, custody) and ensure our systems are scalable, secure, and compliant with industry standards. This role is critical to enabling our engineering teams to ship reliably while maintaining the security posture demanded by digital asset operations. Key Responsibilities Infrastructure & Platform - Design and manage AWS-based infrastructure for multiple blockchain projects (STO, exchange, custody) - Maintain and optimize PostgreSQL for transactional and blockchain-related data; Redis for caching, session storage, and real-time state; RabbitMQ for async messaging and event-driven workflows - Support WebSocket-based real-time services with high availability, low latency, and horizontal scaling for live blockchain updates and trading interfaces - Implement infrastructure as code (Terraform, CloudFormation, or similar) to ensure repeatable, auditable deployments across environments - Manage container orchestration (ECS, EKS, or equivalent) for Django-based API services and supporting microservices - Ensure 24/7 availability of critical services with robust failover, backup, and disaster recovery strategies CI/CD & Automation - Build and maintain CI/CD pipelines for Django API services, supporting microservices, and blockchain integration layers - Automate deployment, rollback, blue-green, and canary release processes across staging and production - Integrate automated testing (unit, integration, e2e) and security scanning into pipelines with quality gates - Configure and manage GitHub organization-level settings, workflows, and policies for consistent practices across all repositories - Establish environment parity (dev, staging, production) and release automation to reduce deployment friction and human error DevSecOps & Security - Implement security best practices across the entire development lifecycle (shift-left security) - Integrate SAST, DAST, dependency scanning (e.g., Snyk, Dependabot), container image scanning, and secret management into pipelines - Harden infrastructure and network configurations: VPC design, security groups, IAM least-privilege, encryption at rest and in transit - Support audit and compliance requirements (SOC 2, ISO 27001, or similar) with documented procedures and controls - Ensure secure integration with key third-party providers (custodial, wallet, and blockchain infrastructure providers) used across our platform - Monitor for vulnerabilities, misconfigurations, and anomalous activity; establish incident response and security alerting GitHub Organization & Collaboration - Configure and standardize the GitHub organization for multiple repositories spanning STO, exchange, and custody projects - Set up branch protection rules, required reviews, status checks, and access controls aligned with our release and security policies - Implement GitHub Actions or similar for organization-wide CI/CD standards, reusable workflows, and shared secrets management - Establish repository templates, contribution guidelines, and documentation standards for consistency across teams - Manage organization-level settings: SSO, team permissions, audit logging, and integration with external security tools Technical Requirements Must Have - **Cloud** : Strong hands-on experience with AWS (VPC, EC2, RDS, ElastiCache, SQS/SNS, Lambda, IAM, CloudWatch) - **CI/CD** : Experience with GitHub Actions, Jenkins, GitLab CI, or similar—including pipeline design, secrets handling, and artifact management - **Containers & Orchestration** : Docker, ECS/EKS, or Kubernetes—building, securing, and scaling containerized Django applications - **IaC** : Terraform, Pulumi, or CloudFormation—managing reproducible, version-controlled infrastructure - **Backend Stack** : Experience supporting Python/Django applications—including migrations, static files, environment config, and dependency management - **Databases** : PostgreSQL administration (backups, replication, performance tuning); Redis for caching, sessions, and task queues - **Messaging** : RabbitMQ or similar message brokers—designing queues, exchanges, and reliability patterns - **Security** : DevSecOps practices, secret management (AWS Secrets Manager, HashiCorp Vault), WAF, intrusion detection, and secure network design Nice to Have - Experience with blockchain, crypto, or digital asset infrastructure - Experience with key providers (custodial, wallet, or blockchain APIs) commonly used in digital asset platforms - Experience with WebSocket scaling, load balancing, and real-time data pipelines - Compliance frameworks: SOC 2, ISO 27001, PCI-DSS - Monitoring & Observability: Prometheus, Grafana, Datadog, CloudWatch—dashboards, alerting, and SLO/SLA management Required Skills & Qualifications - 4+ years of experience in DevOps, SRE, or platform engineering - Proficiency in Python and shell scripting for automation and tooling - Solid understanding of networking, DNS, SSL/TLS, and secure communication protocols - Experience with monitoring, logging, and alerting (e.g., CloudWatch, ELK, Splunk, Grafana) - Strong problem-solving skills and ability to debug production issues under pressure - Effective communication and collaboration with development teams and stakeholders - Ability to document processes, runbooks, and architectural decisions - Bachelor's degree in Computer Science, Engineering, or equivalent practical experience What We Offer - Opportunity to build and own critical infrastructure for a growing **blockchain-focused** digital assets platform - Exposure to STO, custody, exchange, and tokenization technologies - Modern, cloud-native stack and DevSecOps culture - Collaborative team with a strong focus on security and reliability - Work on systems that power real-world blockchain and digital asset use cases **Interested candidates are requested to answer the screening questions below and submit their responses by email. scarlet@must.company** DevOps Engineer – HR Screening Questions & Answers 1. Experience & Background Q: How many years of DevOps or platform engineering experience do you have? What was your most recent role? - Look for: 4+ years in DevOps, SRE, or platform engineering - Acceptable: "I've been in DevOps for 4+ years. My last role was DevOps/SRE at [company]." - Red flag: Fewer than 2 years of hands-on DevOps experience 2. Tech Stack Fit Q: Have you worked with Python or Django applications? How did you support them in production? - Look for: Experience deploying or managing Python web apps - Acceptable: "Yes, I've deployed Django/Python APIs—handling migrations, environment config, scaling." - Red flag: No experience with Python backends Q: What cloud providers and container tools have you used? - Look for: AWS, Docker, Kubernetes/ECS/EKS - Acceptable: Lists specific AWS services and container tools - Red flag: No AWS experience and not willing to learn; no container experience 3. CI/CD & Automation Q: Describe a CI/CD pipeline you built or maintained. What stages did it include? - Look for: Build → test → deploy flow; security checks in the pipeline - Acceptable: "Build, run tests, security scans, deploy to staging, then production." - Red flag: Unclear stages; mostly manual deployments 4. Security & DevSecOps Q: How do you handle security in infrastructure and deployments? - Look for: Secret management, least-privilege access, scanning - Acceptable: "Secret management, least-privilege IAM, dependency and image scanning." - Red flag: Treating security as someone else’s responsibility; very vague answers 5. Multi-Project & Collaboration Q: Have you managed infrastructure for multiple projects or repositories? How did you keep things consistent? - Look for: IaC, shared templates, organization-level policies - Acceptable: "I used IaC, shared templates, and org-level policies across repos." - Red flag: Only single-project experience; no standardization 6. Blockchain / Financial Domain (Bonus) Q: Do you have experience with blockchain, crypto, or regulated financial systems? - Look for: Optional – nice to have - Acceptable: "Yes, I've worked in crypto/fintech." Or: "No, but I'm interested and comfortable with high-security environments." - Red flag: Dismissive of the domain; no curiosity about it 7. Availability & Motivation Q: When can you start? What is your notice period? - Look for: Clear timeline (e.g., 2 weeks, 1 month) - Red flag: Unclear or very long notice (e.g., 3+ months with no flexibility) Q: Why are you interested in this role and our platform? - Look for: Interest in blockchain, infrastructure ownership, or DevSecOps - Acceptable: References AWS, Python/Django, multi-project work, or our product focus - Red flag: Generic answers; no indication they researched the role or company