DevOps Engineer

Andersen is hiring a DevOps Engineer for a major Kazakh bank. The project involves designing a microservices-based banking platform for mobile and web apps with secure integrations.

The customer is one of the oldest and most reliable financial institutions in Kazakhstan, operating in the banking sector for over 30 years. It offers a full range of financial services for both individual and corporate clients, including business lending, mortgages, consumer loans, deposits, payment services, and digital banking solutions. The company focuses on reliability, innovation, and sustainable growth, helping clients achieve their financial goals and contributing to the country’s economic development.

The project is focused on designing a microservices-based banking platform for mobile apps and a web admin panel. It includes authentication, biometrics, card tokenization, payments, and integrations with external systems, ensuring secure and scalable interaction through API Gateway, microservices, and Data Lake.

Tech stack: On-prem, Docker, Kubernetes, API Gateway, GitLab CI/CD, Keycloak, HashiCorp Vault, K8s Secrets.

Responsibilities:

• Configuring and administering API Gateways (Kong, NGINX, Istio, or similar).
• Implementing and maintaining GitLab CI/CD pipelines for all components (backend, frontend, mobile).
• Integrating authentication and authorization systems (Keycloak, OpenID Connect, OAuth2).
• Setting up HashiCorp Vault / K8s Secrets for secure storage of tokens, certificates, keys, and configurations.
• Ensuring compliance with security requirements and environment isolation.
• Monitoring and logging microservices (Prometheus, Grafana, Loki, ELK Stack).
• Configuring alerting, tracing, and incident management tools (Alertmanager, Jaeger).
• Supporting development, testing, pre-production, and production environments.
• Automating infrastructure tasks using Terraform, Ansible, Helm, or Bash/Python.

Must-haves:

• Experience as a DevOps Engineer for 3+ years.
• Experience in fintech application design and deployment.
• Experience developing CI/CD pipelines from scratch for on-premises environments with Kubernetes.
• Strong knowledge of Docker and containerization principles.
• Deep understanding of Kubernetes (Helm, Operators, Ingress, Service Mesh, Namespaces, Secrets).
• Hands-on experience designing and maintaining CI/CD pipelines in GitLab (or similar tools).
• Experience configuring API Gateways (Kong, Traefik, Istio, NGINX).
• Experience with Keycloak for authentication/authorization (OAuth2, SSO, LDAP).
• Hands-on experience with HashiCorp Vault — access policies, secret rotation, PKI.
• Experience integrating Vault with Kubernetes Secrets, GitLab, and Keycloak.
• Understanding of Zero Trust Architecture and DevSecOps best practices.
• Experience in monitoring, logging, and alerting (Prometheus, Grafana, Loki, ELK).
• Experience with infrastructure as code (Terraform, Ansible, Helm).
• Level of English – from Intermediate and above.

Nice-to-Have:

• Experience in fintech solution architecture and system design.

Reasons why this job would be interesting to you:

• Experience in teamwork with leaders in FinTech, Healthcare, Retail, Telecom, and others. Andersen cooperates with such businesses as Samsung, Siemens, Johnson & Johnson, BNP Paribas, Ryanair, Mercedes, TUI, Verivox, Allianz, T-Systems, etc..
• The opportunity to change the project and/or develop expertise in an interesting business domain.
• Job conditions – you can work both fully remotely and from the office or can choose a hybrid variant.
• Guarantee of professional, financial, and career growth! The company has introduced systems of mentoring and adaptation for each new employee.
• The opportunity to earn up to an additional 1,000 USD per month, depending on the level of expertise, which will be included in the annual bonus, by participating in the company's activities.
• Access to the corporate training portal, where the entire knowledge base of the company is collected and which is constantly updated.
• Bright corporate life (parties / pizza days / PlayStation / fruits / coffee / snacks / movies).
• Certification compensation (AWS, PMP, etc).
• Referral program.
• English courses.
• Private health insurance and compensation for sports activities.

Join us!