Tech Lead Devops | Permanent Contract | M/F

You will join the CNO (Cloud Native Operations) group as a DevOps/DevSecOps engineer. Within this group, you will work with development teams or demonstrator teams, bringing your expertise in Kubernetes environments and distributed micro-service architecture analysis. You will also integrate into a project focused on in-depth security of our environments. The work involves Big Data, Smart Data, and AI challenges, adhering to industrialization best practices using continuous integration and delivery methods exclusively in cloud-deployed Kubernetes environments. Our group adopts a 'customer first' and 'Team first' vision, promoting collective work and agile principles for building simple, individual components with a continuous delivery objective.

Must Have

• Build and maintain production Kubernetes clusters.
• Automate deployments using GitOps (ArgoCD).
• Manage network and security with Istio.
• Implement Policy-as-Code with Kyverno.
• Develop and improve monitoring/logging/tracing (Prometheus, Grafana, Loki, Jaeger, OpenTelemetry).
• Promote Cloud Native practices.
• Apply SRE principles for reliability.
• Expertise in Kubernetes.
• Proficiency in GitOps (ArgoCD/FluxCD).
• Experience with Service Mesh (Istio).
• Infrastructure as Code (Terraform).
• Proficiency in CI/CD (GitLab CI, GitHub Actions, Jenkins).
• Experience with Public Cloud (AWS, GCP, Azure).
• Scripting skills (Bash, Python, Go).

Good to Have

• Knowledge of Kyverno or OPA/Gatekeeper.
• Experience with container security tools (Trivy, Falco, Sigstore).
• Contribution to CNCF open-source projects.
• Advanced observability skills (OpenTelemetry, Thanos).
• CNCF Certifications (CKA, CKS, CKAD).

Perks & Benefits

• Extended teleworking and geographical mobility (FlexWork).
• FlexTime and Dress for your day.
• Access to Crystal Park amenities (private park, concierge, gym, music room, Café Joyeux).
• International and internal career mobility.
• Upskilling programs (New World. New Skills) and on-demand training.
• Paid time off for societal engagement missions (3 days/year).
• Sustainable mobility pass.
• Health and well-being programs (Gymlib, United heroes, mindfulness).
• Family support programs (parenting, difficult times).
• Reduction of working time (RTT).
• Health insurance and provident fund.
• Company restaurants and meal vouchers.
• Inter-Company Committee benefits.
• Inclusive hiring for people with disabilities.

Job Description & Summary

You will join the CNO (Cloud Native Operations) group as a DevOps/DevSecOps engineer. Within this group, you will work with development teams (Solution Hub) or demonstrator teams, bringing your expertise in Kubernetes environments and distributed micro-service architecture analysis. In addition, you will integrate into a project focused on in-depth security of our environments (infrastructure and development). Applications/infrastructure incorporate Big Data, Smart Data, Artificial Intelligence challenges. The work performed must adhere to industrialization best practices using continuous integration and delivery methods exclusively in Kubernetes environments deployed in the cloud. In this context, the integration of services/microservices is done via GitLab CI/GitHub automation and deployments using ArgoCD.

Our CNO group adopts a "customer first" vision for the team and "Team first" for its members. To this end, we promote collective work and support our businesses in building and evolving their needs, accepting that these may change over time. Our ability to accept these changes relies on agile principles for building simple and individual components. Within the team, our approach is: "What can I do for you today?". Developments are carried out with a continuous delivery objective, demonstration at each sprint, and early user adoption.

What you can expect from us:

• Build and evolve the platform: Architecture, deployment, and maintenance of Kubernetes clusters in production.
• Automate deployments (GitOps): Implement and maintain GitOps with ArgoCD to automate the application and infrastructure lifecycle.
• Manage network and security: Deploy Istio for service mesh, strengthen security (mTLS, network policies), and improve observability.
• Ensure governance and compliance (Policy-as-Code): Define and automate security policies and best practices with Kyverno.
• Develop observability: Set up and improve the monitoring/logging/tracing stack (Prometheus, Grafana, Loki, Jaeger/OpenTelemetry).
• Promote Cloud Native culture: Support teams in adopting containers, Kubernetes, and best practices.
• Guarantee reliability (SRE): Apply SRE principles to improve resilience, performance, and scalability, define SLO/SLI, and automate incident response.

What we can expect from you:

Required skills:

• Kubernetes expertise (production clusters).
• Proficiency in GitOps (ArgoCD or FluxCD).
• Experience with Service Mesh (ideally Istio).
• Infrastructure as Code (Terraform).
• CI/CD (GitLab CI, GitHub Actions, Jenkins).
• Public Cloud (AWS, GCP or Azure).
• Scripting (Bash, Python) and ideally Go.

Appreciated skills:

• Kyverno or OPA/Gatekeeper.
• Container security (Trivy, Falco, Sigstore).
• CNCF open-source contribution.
• Advanced observability (OpenTelemetry, Thanos).
• CNCF Certifications (CKA, CKS, CKAD).

Technical Stack:

• Orchestration: Kubernetes (EKS/GKE/AKS)
• GitOps: ArgoCD
• Service Mesh: Istio
• Policy Engine: Kyverno
• IaC: Terraform, Helm
• CI/CD: GitLab CI, GitHub Actions
• Observability: Prometheus, Grafana, Loki, Jaeger, OpenTelemetry
• Cloud: AWS / GCP / Azure
• Languages: Go, Python, Bash

These benefits we offer you:

Work environment and Flexibility:

• Flexibility with the FlexWork charter: extended teleworking, geographical mobility, FlexTime, Dress for your day
• Crystal Park (Neuilly-sur-Seine site): 2-hectare private park, concierge service, music room, gym, Café Joyeux

Development:

• International mobility and internal mobility after 12 months of seniority
• New World. New Skills program for upskilling on future challenges (ESG, technologies, diversity inclusion) and access to an on-demand training platform

Commitment:

• 3 days credit per year on working time for societal engagement missions
• Sustainable mobility pass to cover your sustainable mobility expenses

Health/Well-being:

• Be Well, Work Well program for health care (Gymlib partnership, United heroes app, sports associations, mindfulness training)
• Family Care program to support you in your parenting projects as well as in difficult times

And also: RTT, health insurance and provident fund, company restaurants and meal vouchers, Inter-Company Committee benefits…

All our offers are open to people with disabilities