Enable job alerts via email!
Cloud Network Engineer
GREENBEEN TECHNOLOGY SERVICES PRIVATE LIMITED
Singapore
On-site
SGD 60,000 - 80,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading tech company in Singapore is seeking a professional to manage HashiCorp Consul and implement critical security measures for service communication. You will deploy and configure service mesh solutions, ensuring secure, authorized traffic flow in multi-cloud environments. Ideal candidates have strong experience with the HashiCorp Suite, Kubernetes, and networking. This role offers opportunities to work with advanced technologies and collaborative teams.
Qualifications
- Proven experience with Consul, including Consul Connect, Vault, and Terraform.
- Strong knowledge of Kubernetes, Docker, and Nomad.
- Understanding of L7 traffic management and networking protocols.
Responsibilities
- Deploy, configure, and operate HashiCorp Consul for service management.
- Implement mTLS for secure service-to-service communication.
- Define permissions using Consul intentions to restrict traffic.
- Maintain a dynamic service registry to track service health.
Skills
Job descriptions focused on HashiCorp and Service Mesh (specifically HashiCorp Consul) center on managing secure, authorized, and observable service-to-service communication within dynamic, multi-cloud, and microservices-based environments
Core Responsibilities
- Service Mesh Management: Deploy, configure, and operate HashiCorp Consul to manage East-West traffic between services.
- Zero Trust Security: Implement mTLS (mutual Transport Layer Security) encryption for all service-to-service communication, including automatic certificate management.
- Access Control: Define and manage service-to-service permissions using Consul intentions (intent-based policies) to restrict traffic.
- Service Discovery: Maintain a central, real-time, and dynamic service registry to track service health and IP addresses.
- Infrastructure as Code (IaC): Use Terraform and Consul-Terraform-Sync (CTS) to automate network device updates based on service changes.
- Traffic Engineering: Configure traffic splitting, canary releases, and load balancing for high availability.
- Observability: Implement telemetry and integrate with tools like Prometheus and Grafana for monitoring service health and network traffic.
Typical Qualifications & Skills
- Experience with HashiCorp Suite: Proven experience with Consul, including Consul Connect, as well as Vault (for secrets management) and Terraform.
- Containerization & Orchestration: Strong knowledge of Kubernetes (K8s), Docker, and Nomad.
- Networking Knowledge: Understanding of L7 traffic management, TCP/UDP/gRPC protocols, load balancing, and DNS.
- Proxy Knowledge: Experience with Envoy proxy (used as the data plane in Consul).
- Cloud Platforms: Familiarity with AWS (EKS, ECS, Lambda), GCP, or Azure.
- Platform Agnostic: Ability to manage service mesh across hybrid environments (Kubernetes, VMs, on-premises).
Key Use Cases in Job Roles
- Solving Complex Networking: Moving away from static IP-based firewall rules to service-based segmentation.
- Multi-Cluster Connectivity: Utilizing Mesh Gateways to connect different service meshes across regions or clouds.
- Legacy Application Support: Connecting legacy VM-based applications to modern Kubernetes services via sidecar proxies.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
