Staff Build Engineer

GrowExx

Pune, India

6-8 Years

Save

Posted a month ago
Be among the first 10 applicants

Early Applicant

Job Description

Growexx is seeking a Staff Build Engineer for one of its clients, who can be an integral part of their enterprise-scale migration from Bitbucket to Github Enterprise Cloud (GHEC), design and roll out GitHub Actions based CI/CD, and establish secure, compliant, and observable build/release pipelines for a 300-developer organization in the healthcare domain. The candidate will be the technical owner for source control strategy, build infrastructure, and release automation and an emphasis on reliability, speed, and HIPAA/SOC2 compliance.

Key Responsibilities

Inventory repos, pipelines, users, secrets, and integrations; define cutover strategy and rollback plans.
Migrate code, issues and CI from Bitbucket to GHEC with minimal downtime, script repeatable migration runbooks.
Normalize repository standards (branch naming, default branches, protection rules, CODEOWNERS, templates)
Architect multistage pipelines (build->test>security scans>artifact publish>deploy)
Implement reusable workflows, composite actions, and organization-level workflow templates.
Set up self-hosted runners and autoscaling runner fleets(containerized/ephemeral) for Linux/windows/macOS as needed.
Establish secret management via OIDC to cloud providers; remove long live credentials.
Enable GitHub Advanced security (Code scanning, Dependabot, secret scanning)
Enforce SSO/SAML, branch protection, required checks, signed commits, and PR review policies.
Implement policy-as-code (e.g., Open policy agent, repo/rule sets), change-management controls, and audit-ready logs.
Ensure pipelines and artifacts are aligned with HIPAA, SOC2, GDPR and least privilege principles avoid PHI in logs.
Standardize build images, caching, and artifact storage; speed up CI with dependency caches and test parallelization.
Create environment promotion flows (dev/stage/prod) with approvals and progressive delivery (canary/blue green)
Integrate QA automation, performance tests, and SAST/DAST into pipelines.
Define and track DORA metrics (lead time, deployment frequency, MTTR, change failure rate)
Add telemetry for pipeline duration, queue times, and flake rates; publish dashboards and SLAs for CI.
Drive communications, training, and documentation; run office hours and migration pilots.
Partner with security, compliance, SRE, and product teams.

Education and Experience

6+ years in Build/Release/DevOps/Platform Engineering; 2+ years leading large SCM/CI migrations.
Proven previous experience in migrating code from Bitbucket to GitHub Enterprise Cloud.
Expert with Git, GitHub Enterprise Cloud, and GitHub Actions at an organizational scale.
Proven experience running self-hosted/ephemeral runners and tuning CI performance.
Strong CI/CD for polyglot stacks (Java/Kotlin, .NET, Node, Python, mobile)
Hands-on with artifact registries (GitHub packages/Artifactory), Iac (Terraform), containers (Docker), and one major cloud (AWS/Azure/GCP), preferably Azure.
Security background: branch protection, CODEOWNERS, signed artifacts, SBOMs, dependency governance, secrets handling (ODIC)
Healthcare or other regulated industry experience; understanding of HIPAA controls and audit requirements.
Excellent scripting (Bash/PowerShell) and one high-level language (Python/Go)
Bitbucket to GitHub migrations using enterprise importers; Jira/GitHub Projects integrations.

Analytical and Personal Skills