Description
At Novasign, we’re redefining the future of bioprocessing. Our platform, Novasign Studio, combines intelligent hybrid models, automation, and modern microservices (SOA) architecture to accelerate the development of life-saving therapies, next-generation enzymes, and sustainable food technologies.
We’re scaling fast with a growing customer base across biotech and life sciences. If you’re looking to make a real-world impact with cutting-edge machine learning and SaaS technology, we want to hear from you. We're hiring ten new team members in the next four months, and this role is critical in driving our growth.
Role Summary
We are seeking a Senior DevOps Engineer to develop and evolve our infrastructure, deployment, and automation practices as part of the software engineering team. You will design, implement, and maintain scalable, secure, and reliable cloud and on-premise environments for Novasign Studio. This role is ideal for someone who thrives in a fast-paced, cross-functional environment and is passionate about automation, CI/CD, and modern DevOps tooling. You will focus on authoring native Kubernetes operators/controllers (Go preferred), building deployment packages for on-prem and AWS (EKS expertise), and implementing hybrid deployments requiring socket programming and concurrency. You will also contribute to best practices in observability, security, and cost optimization.
You will work with a modern stack including Kubernetes (k3d/k3s, Helm, Tilt), Docker, Pulumi, ArgoCD, and a wide range of CNCF and open-source tools. You will help implement GitOps, IaC, and progressive delivery, and support a provider-based architecture for flexibility between cloud and on-premises.
Responsibilities
Design, implement, and evolve cloud \& on-prem infrastructure (Kubernetes: k3d/k3s, Helm, Tilt; Docker) using IaC (Pulumi, Terraform/OpenTofu, Helm) on AWS (EKS)
Author and extend native Kubernetes operators/controllers in Go (provider-based architecture)
Build deployment packages for AWS and on-prem; enable hybrid connectivity (socket programming, concurrency)
Implement GitOps and progressive delivery (Argo CD, Argo Rollouts, Helm)
Design, secure, and optimize CI/CD pipelines (Jenkins, GitLab CI, Dagger)
Establish observability \& tracing (Prometheus, Grafana, Loki, Jaeger, Zipkin) and centralized logging (Fluent Bit)
Manage service mesh \& gateways (Istio, Linkerd, Consul Connect; Envoy, Kong, AWS API Gateway)
Implement secrets \& policy management (Vault, AWS Secrets Manager, K8s secrets, BuildKit Secrets; K8s RBAC, OPA Gatekeeper, Kyverno)
Maintain container registry \& image supply chain (Harbor, ECR, Artifactory; Trivy scanning)
Support security, compliance, networking, and cost optimization across environments
Integrate Dapr for sidecar/building-block patterns in platform services
Apply testing \& resilience practices (Go/Python/C# test frameworks; chaos engineering: Litmus, Chaos Mesh)
Lead incident response, troubleshooting, and root cause analysis
Document infrastructure \& decisions (ADR, C4); mentor \& share best practices
Reduce technical debt; coordinate framework/library upgrades; adopt vetted CNCF/open-source tools
Requirements
Bachelor’s/Master’s in Computer Science, Software Engineering, or related field (or equivalent experience)
5+ years DevOps / SRE / infrastructure engineering
Kubernetes expertise: k3d, k3s, Helm, Tilt; Docker \& container orchestration
AWS (hands-on), EKS focus
IaC \& packaging: Pulumi, Terraform or OpenTofu, Helm
GitOps \& progressive delivery: Argo CD, Argo Rollouts
Dapr and Dapr-enabled applications
Programming: Go (preferred) and/or Python; strong Bash scripting
Kubernetes operators/controllers authoring (Go)
CI/CD: Jenkins, GitLab CI, or Dagger; security best practices
Observability \& tracing: Prometheus, Grafana, Loki, Jaeger, Zipkin; logging (Fluent Bit)
Service mesh: Istio, Linkerd, Consul Connect
Secrets \& policy: Vault, AWS Secrets Manager, K8s secrets, Docker BuildKit Secrets; K8s RBAC, OPA Gatekeeper, Kyverno
Registries \& supply chain: Harbor, ECR, Artifactory; image scanning (Trivy or similar)
Provider-based modular architecture design
Networking, security, compliance fundamentals in cloud
Excellent English communication
Nice to have hands-on experience in multi-tenancy strategies
Benefits
Innovation Culture: We are an international team. We value new ideas, open discussions, and constructive criticism. Your voice shapes our technological direction
Professional Growth: Continuous learning opportunities and career development in cutting-edge software
Meaningful Impact: Work on software that accelerates life-saving therapies, enzyme manufacturing and sustainable food production
Competitive Package: We offer an attractive salary above industry standards, complemented by comprehensive benefits, including a free food allowance. In accordance with the IT collective agreement (minimum ST1 – Regelstufe), the minimum gross annual salary is €53,802; however, your actual compensation will reflect your skills, experience, and impact and will be significantly higher
Full time (38,5 h/week) – 25 days of paid holidays per full calendar year