Lead DevOps
Satellite Office · Pasig, Pasig City, Philippines
About The Role
Some engineers keep the lights on. You make sure they never flicker in the first place. We're looking for a senior DevSecOps Engineer to own and continuously sharpen the security, reliability, observability, and cost efficiency of our cloud and edge infrastructure — and to have real influence over how it's all built.
This is a hands-on, senior individual contributor role. No managing for the sake of managing — just deep technical ownership, strong opinions, and the autonomy to act on them.
What you'll own
Cloudflare & edge security — You'll configure, manage, and tune the full Cloudflare stack: WAF, CDN and caching strategy, firewall rules, rate limiting, bot management, and custom rules. You'll mine Cloudflare logs to spot attack patterns, performance bottlenecks, and false positives — then tune until the rules are sharp, effective, and quiet. You'll partner with engineering to expose APIs and customer-facing endpoints safely .
AWS security, governance & cost — You'll own our AWS security posture end to end: IAM and least-privilege access, network security (VPCs, security groups, NACLs), encryption, key management, and compliance controls. You'll also drive cost optimization — analysing spend and usage, then implementing the savings (right-sizing, reservations, architectural improvements) — and set the standards that keep every account and environment consistently governed.
Observability, logging & monitoring — You'll design and maintain centralised logging and observability across CloudWatch, New Relic, Sumo Logic, and Cloudflare. You'll lift the signal-to-noise ratio by cutting low-value logs and standardising formats, then build the dashboards, alerts, and SLO/SLI-based monitoring that turn raw data into real visibility.
Incident response & operational excellence — You'll build and continuously improve our IR processes — detection, escalation, communication, root cause analysis, and post-incident reviews — and act as a senior responder when security or availability is on the line. You'll turn every incident into a preventative improvement, and help engineering and product bake security and reliability in early, not bolt them on late.
You'll thrive here if you have
- 7+ years in DevOps, SRE, or DevSecOps roles
- Deep, hands-on AWS experience in production
- Strong Cloudflare experience, including WAF and rule-based security
- Proven work across observability platforms — CloudWatch, New Relic, Sumo Logic
- A solid grip on web security (OWASP Top 10, DDoS mitigation, API security) and networking fundamentals (HTTP, TLS, DNS)
- A track record building and improving operational processes and runbooks
- The instinct to turn logs and metrics into actionable change
- Sharp written communication for docs, incident reports, and recommendations
Nice to have
- Infrastructure as code (Terraform, CloudFormation, etc.)
- eCommerce or high-traffic, customer-facing systems
- CI/CD pipelines and secure deployment practices
- Compliance frameworks (PCI, SOC 2, etc.)
- Experience mentoring engineers or leading technically
What success looks like
Cloudflare rules that are well-tuned, effective, and low-noise. AWS environments that are secure, cost-efficient, and consistently governed. Logs, dashboards, and alerts that give clear, actionable insight. Incidents detected earlier, resolved faster, and recurring less. And security and reliability woven into everyday engineering — not treated as someone else's problem.
If you want genuine ownership of infrastructure that matters, with the freedom to make it better, let's talk.
This listing was posted by a verified recruiter at Satellite Office. Report this listing
JobSpring