Job Role: Jfrog Admin (Self Hosted)
Client: Domestic (Delhi based client)
Experience required: To be eligible for this position, a minimum of 2-3 years of experience in Linux Administration is required.
Project duration: 1 year. Renewal : Not known
Client Onsite: Noida, Okhla phase 2. New Delhi.
Employment Type: Full-Time / Payroll ( Project based clause) /Contractual ( I year). Notice period 45 days.
Client Onsite: Noida, Okhla phase 2. New Delhi.
Job Overview
We are looking for a DevOps Engineer with 2–3 years of experience in building, managing, and automating DevOps pipelines and deployments on self-managed infrastructure.
This role demands hands-on experience with at least 2 tools from the following stack:
- JFrog Artifactory
- SonarQube
- GitHub Enterprise
The candidate should be comfortable working in Linux environments, automating tasks with scripts, and configuring the DevOps ecosystem at an infrastructure and pipeline level.
Key Responsibilities & Expected Configuration Knowledge
JFrog Artifactory, Xray and Advance security:
- Implement and manage vulnerability scanning for code, dependencies, containers, and binaries.
- Configure and enforce open-source license compliance policies across development workflows.
- Integrate security scans into CI/CD pipelines (GitLab CI, Jenkins, Azure DevOps, etc.).
- Use SAST, DAST, dependency scanning, and container scanning to detect risks early.
- Analyze and prioritize vulnerabilities using contextual risk and exploitability insights.
- Maintain and monitor compliance dashboards, audit logs, and governance controls.
- Collaborate with development teams to shift-left security and improve secure coding practices.
- Automate build and release blocking policies when critical issues are detected.
- Manage artifact scanning and security integration with repositories (Artifactory, GitLab).
- Provide reporting, remediation guidance, and security awareness to cross-functional teams.
SonarQube:
- Configure SonarQube for Java/Maven (or .NET) projects
- Generate and analyze reports on code smells, vulnerabilities, bugs
- Enforce quality gates in Jenkins using sonarScanner CLI or plugin
- Set up project-level and global rulesets
- Manage access control and authentication
GitHub Enterprise:
- Manage repositories, create branches, handle pull requests
- Configure branch protection rules and merge checks
- Implement webhook triggers to integrate with Jenkins
- Resolve merge conflicts and apply GitFlow or trunk-based workflows
Linux & Scripting:
- Navigate and manage Linux file systems
- Write Bash, Python, or PowerShell scripts for automation
- Configure log rotation and cleanup for Jenkins, SonarQube, Artifactory
- Set up reverse proxies (Nginx/Apache) if needed
- Review and troubleshoot logs in /var/log, /opt/jenkins, or containers
Tools & Technologies (Hands-on Expectation):
SCM: GitHub Enterprise
Quality: SonarQube
Artifacts: JFrog Artifactory and advance security
Scripting: Bash, Python, PowerShell
OS: Linux (Ubuntu/CentOS), Windows (for .NET if applicable)
Build Tools: Maven, Gradle, dotnet CLI
Minimum Requirements:
- 2–3 years total experience
- 2+ years hands-on with the following: SonarQube, JFrog Artifactory, GitHub Enterprise
- Clear understanding of DevOps workflows, not just tool usage
- Must be able to explain what they have configured and automated in each tool
Preferred Skills (Nice to Have):
- Exposure to infrastructure-as-code tools (e.g., Ansible, Terraform)
- Awareness of DevSecOps practices
- Experience with monitoring tools (Grafana, Prometheus, Nagios)
- Experience integrating .NET Core apps (IIS or Kestrel hosting)
Candidate Submission Instruction:
To apply, candidates must:
- Include a detailed CV that lists DevOps tools used
- Clearly explain what configurations/implementations were done by them during the project (not their team)
- An extended CV
- Or a separate email/document that describes tool-by-tool hands-on experience
Applications without actual hands-on configuration details will not be shortlisted.