Sr. DevOps Engineer

Certara is a growing company that provides a dynamic and exciting place to work. Our purpose is to assist in accelerating the development of meaningful medicines that make an impact on our society and the people that need them most. Innovation and creativity are highly valued, and everyone is given the opportunity for training and continuous development. Our portfolio spans the discovery, preclinical, clinical and post-marketing phases of drug development, working with 1,200 commercial companies, 250 academic institutions, and numerous regulatory agencies.

We are seeking a highly skilled and experienced Senior Site Reliability and Security Engineer to join our team. As a Senior Site Reliability and Security Engineer, you will play a crucial role in securing and enhancing the resiliency of our software development lifecycle and infrastructure, both in the cloud and on premises. Your expertise in AWS (EC2, VPC, S3, CloudTrail, IAM, etc), Kubernetes, Linux, networking and Python will be essential for success in this role.

• Review all aspects of Certara AI's infrastructure, both on-prem and in the cloud and provide recommendations on enhancing security and reliability. This includes perimeter security, host-level configurations, system and application hardening, logging, auditing, access control and backups.

• Review all aspects of Certara AI's Software Development Lifecycle (SDLC) with a focus on code scanning and penetration testing.

• Manage and evaluate findings from our existing sensors and vulnerability scanners and provide recommendations on additional technologies.

• Develop comprehensive and actionable plans for responding to disasters and potential security breaches.

• Ensure processes and procedures are in compliance with various ISO controls.

• Stay up to date with emerging technologies and industry trends, and evaluate their potential for improving the security and reliability of our infrastructure and processes.

• Proven expertise securing complex AWS environments using services including VPC, EC2, Security Groups, IAM policies, S3, Lambda, CloudWatch, CloudTrail, etc.

• Strong understanding of networks and network security including all elements of the OSI model, firewalls, network segmentation and encryption technologies.

• Strong familiarity with intrusion detection and prevention tools and security agents such as Wiz, Lacework, etc.

• Strong understanding of logging best practices including log retention and analysis and SIEM.

• Strong familiarity with Disaster Recovery best practices, failover strategies and site resiliency.

• Strong experience with complex software stacks involving dozens of micro services. Kubernetes and docker experience a strong plus.

• Strong Python development skills. You should be comfortable with the Python standard library, writing RESTful microservices, interacting with APIs and parsing data.

• Strong knowledge of Linux internals. You are at home in the Linux shell of your choice and can write complex shell scripts. You are able to rapidly diagnose issues and identify whether the root cause is on the host, application layer or network using tools such as strace, tcpdump, sed, awk, etc.

• You are experienced with continuous integration tools such as CircleCI, Github Actions, etc.

• Experience with configuration management tools such as ansible a plus.

Certara bases all employment-related decision on merit, taking into consideration qualifications, skills, achievement, and performance. We treat all applicants and employees without regard to personal characteristics such as race, color, ethnicity, religion, sex, sexual orientation, age, nationality, marital status, pregnancy, physical or mental condition, genetic information, military service, or other characteristic protected by law.