Role: Lead DevOps Engineer

About Verticurl:

Verticurl (a division of Ogilvy), is a WPP company, was established in 2006 with the mission to be the world’s leading marketing technology services agency for global organization with a presence in APAC, North America and LATAM. Verticurl global marketing automation, demand generation and digital strategy specialists support our customers in more than 14 different languages and in a varietyof industry sectors, including High Tech, Banking, Insurance and Financial Services, Manufacturing, Healthcare and Consumer Electronics. WPP is listed in London stock exchange which has approximately 130,000 employees across more than 130 countries.

About WPP:

WPP is home to market-leading agency brands and more than 100,000 people committed to doing extraordinary work for our clients. No other company matches the breadth of our creative talent, the scale of our global presence, or the depth of our technology, data and AI capabilities. We have enduring relationships with leading global brands and organisations, including more than 300 of the Fortune 500, helping them to innovate, transform and grow. Our offer to clients spans every discipline of modern marketing through our global integrated media and creative agencies, public relations firms and specialist communications companies. We're committed to fostering a culture of creativity, belonging and continuous learning. By attracting the brightest talent and empowering our teams to do their best work, we deliver outstanding results for our clients. We bring teams together from around the world to deliver impactful ideas and leading capabilities for clients. Our state-of-the art campuses in the world’s top cities enable flexible working and seamless collaboration across marketing disciplines and agencies.

Business Value

• Deployment Process
• Secret Management Risks
• GCP Infrastructure Security & Governance
• Environment & Configuration Management
• Infrastructure Performance, Scaling & Optimization

Key Responsibilities

• Own and enforce zero-downtime deployment strategies across all production workloads.
• Design and enforce custom Helm rollback and deployment patterns with automated validation.
• Review and refactor existing Terraform modules to reduce excessive granularity and simplify dependency chains.
• Implement strict CI/CD governance in GitLab and GitHub Actions including mandatory PR approvals, automated security checks (Snyk/SonarQube), and enforced policy gates.
• Migrate secret management away from shared volume practices to Kubernetes Secrets or Secret Store CSI Driver with GCP Secret Manager backend.
• Standardize environment drift detection across pre-prod and production via Terraform Cloud and automated config audits.
• Lead GKE workload and service account scoping using workload identity and IAM principles.
• Define and maintain infrastructure runbooks, operational SOPs, and DR playbooks.
• Mentor junior engineers, define DevOps KPIs, and participate in postmortems.

Requirements

• Minimum of 5 years of experience in a DevOps, SRE, or Infrastructure Engineering role.
• Solid understanding of Terraform and experience maintaining reusable module libraries.
• Hands-on experience managing workloads on Kubernetes (preferably GKE).
• Working knowledge of CI/CD tools such as GitHub Actions and Helm.
• Familiarity with Google Cloud services, including networking, CloudSQL (Postgres), and container security.
• Competence in observability tooling, especially Datadog dashboards and alert configurations.
• Strong operational mindset with attention to detail in release processes and deployment integrity.

Desirable Experience

• Exposure to GitOps tooling such as ArgoCD or FluxCD.
• Experience developing or integrating Kubernetes operators.
• Familiarity with service-level indicators (SLIs), service-level objectives (SLOs), and structured alerting.

Tools and Expectations

• Terraform / HCP Terraform - Core to infrastructure provisioning. Required to build, refactor, and maintain reusable infrastructure modules across environments, enforce naming/tagging standards, and leverage state management for drift detection and rollback.
• GitHub / GitLab / GitHub Actions - Central to CI/CD workflows. Expected to enforce secure release procedures, set up integration with code quality tools, and prevent direct changes to critical branches.
• Helm - Used for Kubernetes application packaging and deployment. Must implement pre/post deployment logic, rollback plans, and chart lifecycle automation.
• GKE / Kubernetes - Platform for hosting applications. The engineer must manage node pools, service networking, security contexts, and namespace segmentation.
• GCP Services (CloudSQL, VPC, IAM) - Backend for infrastructure workloads. Expected to configure VPC isolation, IAM boundaries, and implement private access wherever possible connectin to Postgres on CloudSQL.
• Secret Manager / Kubernetes Secrets / CSI Driver - Secret handling is critical. Migrate legacy init-container pattern to scoped access through Secrets Manager sync or CSI injection.
• Datadog - Observability backbone. Responsible for building actionable metrics, tracking SLOs, and managing alert noise to reduce operational fatigue.
• Cloudflare - Interface layer. Use Terraform to define DNS entries, WAF rules, and validate exposure configuration per environment.
• Snyk / SonarQube / Wiz - Code and container security enforcement. Ensure pipeline integration catches vulnerabilities and provides immediate feedback to development.

Work Location:

Hyderabad/Gurgaon

How to Apply:

If you are passionate about leading transformative marketing automation projects and driving exceptional customer experiences, we’d love to hear from you! Please send your resume to [email protected]