NeGD is currently inviting applications for the position of DevOps Engineer on a contractual basis for a period of three years.

Responsibilities

Cloud Architecture & Design:
Design and implement scalable, secure, and reliable cloud architectures using AWS services
Develop architectural best practices for cloud adoption, including design, implementation, and automation
Create and manage cloud infrastructure with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, etc.

Deployment & Management:
Deploy, manage, and operate scalable, highly available, and fault-tolerant systems on AWS
Implement automation tools and frameworks (CI/CD pipelines) for managing cloud environments
Manage AWS services like ECS, EKS, API Gateway, EC2, S3, RDS, Lambda, VPC, CloudFront, etc.

Security & Compliance:
Ensure the security of cloud infrastructure by implementing best practices, including IAM policies, encryption, and security group management
Monitor and optimize cloud resources for security, performance, and cost-efficiency
Perform regular security assessments and audits of the cloud environment

Secure Development and Deployment:
Integrate security into cloud development and deployment
Conduct security reviews of architecture, design, and code
Automated vulnerability scanning (Nessus, OWASP ZAP)
Source Code scanner (SonarQube)

Infrastructure Security:
Implement and manage security AWS, Azure, Google Cloud
Secure cloud environments (e.g., AWS, Azure, Google Cloud) with appropriate controls and policies
Manage and monitor infrastructure AWS inspector, Guard Duty, GCP security command center)

Monitoring and Incident Response:
Set up and maintain tools for real-time threat monitoring and incident response
Analyze and respond to security incidents, ensuring swift resolution
Create and test disaster recovery and incident response plans

Collaboration and Training:
Work closely with developers to embed security in every stage of the development process
Collaborate with business stakeholders to gather and analyze their needs, translating business requirements into cloud-based solutions
Act as the liaison between business units, cloud architects, and IT teams, ensuring clear communication and understanding of cloud requirements
Responsible for account creation, accounting, billing management
Conduct security training and workshops for DevOps and development teams
Foster a culture of “security as everyone’s responsibility”
Cloud Cost Management: Billing, accounting, Cost Optimization Strategies

Compliance and Best Practices:
Ensure adherence to security standards (e.g., ISO 27001, SOC 2, PCI DSS, GDPR, DPDP Act)
Stay updated on industry trends, threats, and best practices in DevSecOps
Continuously evaluate and improve the organization’s security posture

Security Risk Analysis and Vulnerability Assessment:
Identify and prioritize vulnerabilities based on their severity and potential business impact
Stay updated on the latest vulnerabilities, exploits, and security trends
Recommend and implement security improvements to prevent recurring vulnerabilities
Document vulnerabilities with detailed reports, including remediation recommendations
Simulate real-world attacks to evaluate the effectiveness of security measures
Analyze the results of penetration tests to identify security gaps and potential attack vectors
Assess the organization’s overall security posture by evaluating risks and potential attack surfaces
Perform threat modeling to identify high-risk areas that require immediate attention
Provide recommendations for risk mitigation based on findings
Create detailed reports of findings from vulnerability assessments and penetration tests
Actionable remediation steps and recommendations for improvement on findings

Performance Optimization:
Monitor and analyze system performance, identify potential issues, and implement solutions for continuous improvement
Optimize cloud costs by selecting the appropriate AWS services and implementing cost management strategies

Collaboration & Support:
Work closely with development teams to ensure that cloud solutions meet business requirements and objectives
Provide technical leadership and guidance to junior team members
Assist in the migration of applications to the cloud and the development of new cloud-native applications

Important Links

About National e-Governance Division (NeGD)

The National e-Governance Division (NeGD) is an independent business division under the Digital India Corporation, Ministry of Electronics and Information Technology. NeGD has been playing a pivotal role in supporting MeitY in Programme Management and implementation of e-Governance projects and initiatives undertaken by various Ministries/ Departments, both at the Central and State levels.

NeGD has been spearheading several innovative initiatives under the aegis of the Digital India Programme. Those have been developed keeping the vision areas of Digital India at the core- providing digital infrastructure as a core utility to every citizen, governance and services on demand and in particular, digital empowerment of the citizens of our country; some of these initiatives include DigiLocker, UMANG, Poshan Tracker, OpenForge Platform, API Setu, National Academic Depository, Academic Bank of Credits, Learning Management System.