About the Role
We're looking for a hands-on Senior/Lead Engineer who can build high-quality .NET services, design cloud infrastructure with Terraform (IaC), and own end-to-end CI/CD pipelines. You'll partner with architects, DevOps, and product teams to deliver scalable, secure, and observable software in the cloud.
Key Responsibilities
- Application Engineering (.NET):
- Design and develop microservices/APIs in .NET 6/7/8 (C#) with clean architecture and SOLID principles.
- Implement asynchronous patterns, caching, resilient calls (Polly), and domain-driven design where appropriate.
- Write unit/integration tests (xUnit/NUnit/MSTest), mocking (Moq), and code coverage gates.
- Infrastructure as Code (Terraform):
- Model, provision, and manage cloud resources (Azure preferred: App Service, AKS, ACR, Key Vault, Storage, Redis, SQL/PG).
- Standardize reusable Terraform modules, remote state (e.g., Azure Storage + Key Vault), and workspaces for environments.
- Implement secure-by-default patterns (managed identities, private endpoints, network rules).
- CI/CD Ownership:
- Build secure pipelines (e.g., Azure DevOps Pipelines, GitHub Actions, or GitLab CI) for build, test, scan, and deploy.
- Integrate SAST/DAST/Dependency scanning (e.g., SonarQube, OWASP Dependency-Check, Trivy, CodeQL).
- Blue/green & canary deployments; environment approvals and release governance with artifacts versioning.
- Observability & Reliability:
- Define SLOs/SLIs, instrument apps with OpenTelemetry, and configure Azure Monitor/App Insights/Prometheus + Grafana.
- Incident response and postmortems; performance tuning and cost optimization.
- Collaboration & Leadership:
- Mentor engineers; drive engineering best practices, coding standards, and architecture reviews.
- Partner with Security and Platform teams to align on compliance, secrets management, and policy as code (OPA/Conftest/Azure Policy).
Must-Have Skills
- Strong C#/.NET 6+ (REST APIs, messaging, EF Core/Dapper).
- Terraform (HCL, modules, state mgmt, workspaces) on a major cloud (Azure preferred; AWS/GCP a plus).
- CI/CD with Azure DevOps or GitHub Actions (multi-stage YAML, approvals, environments).
- Containerization: Docker, registries (ACR/ECR/GHCR), and deploying to AKS or App Service.
- Security: secrets/managed identities, least-privilege IAM (RBAC), vulnerability scanning.
- Git workflows (GitFlow/Trunk-based), PR reviews, branch policies.
Good-to-Have
- Kubernetes (Helm/Kustomize), Service Mesh, Ingress, HPA.
- SQL Server/PostgreSQL, Redis; messaging (Service Bus, Kafka).
- Event-driven & CQRS patterns; gRPC.
- Policy as Code (OPA/Conftest), Terraform Cloud/Enterprise, Atlantis.
- Performance testing (k6/JMeter), chaos/Resilience testing.
- Cost governance (FinOps), tagging standards.
