Senior Site Reliability Engineer

The Instant Financial Issuance as a Service (IFIaaS) Cloud Service includes a wide array of components including web services, application servers, and databases hosted in an on-prem environment. The Sr. Site Reliability Engineer (SRE) will be responsible for ensuring that the SaaS platform is reliable, available, and performant, as well as scalable, secure, and cost-effective. Ultimately, the individual will be responsible for the platform uptime, functional management of all the IFIaaS cloud environments, applications, networks, scoping projects, and the resolution of application and network issues., The Instant Financial Issuance as a Service (IFIaaS) Cloud Platform spans multiple on-prem environments. The Senior Site Reliability Engineer (SRE) will play a critical role in ensuring the platform's reliability, scalability, security, and operational excellence across these geographically distributed environments. Given the asymmetric nature of our data centers, the SRE will design and operate systems that prioritize local HA while ensuring effective, tested, and compliant failover for DR scenarios. This role includes responsibility for platform uptime, environment management, network and application reliability, observability, automation maturity, compliance, and operational excellence., * Own SLOs/SLIs for availability (99.9%), latency, error rate, and quality of service across microservices.

• Design/operate end-to-end observability: metrics, logs, traces, synthetic checks, real-user monitoring (RUM).
• Instrument services (Windows services, APIs, background jobs) with structured logs and trace context.
• Build health probes and SLA monitors for critical transactions and cross-service dependencies.
• Monitor system issues using various metrics, such as uptime, latency, error rate, throughput, and availability
• Deploy and maintain monitoring and on-call tools i.e.: Splunk on-call, Prometheus, Datadog, etc.
• Lead incident response (triage, comms, coordination, real-time mitigation) and conduct blameless postmortems with actionable follow-ups.
• Maintain and continuously improve runbooks, escalation paths, on call rotations, and paging policies.
• Implement MTTA/MTTR reduction programs.
• Stand up war room protocols and ensure stakeholder updates during incidents.
• Forecast compute, storage, network needs, track headroom against growth and peak patterns.
• Conduct performance profiling and bottleneck analyses (CPU, memory, I/O, thread pools, connection pools).
• Optimize resource allocation on VMware (DRS, affinity rules, reservations) and Windows VM tuning (kernel, TCP stack, NICs).
• Validate scaling strategies (horizontal vs. vertical) and implement auto-scaling where supported.
• Standardize gold images, configuration baselines, and desired state for Windows Server (PowerShell DSC or equivalent).
• Manage patching (OS, middleware, runtime) with maintenance windows aligned to error budgets.
• Ensure backup, snapshot, and restore strategies meet RPO/RTO; regularly test restores.
• Maintain secure baselines (CIS benchmarks for Windows/VMware), vulnerability management, and patch cadence.
• Support compliance audits (PCI-CP, PCI-DSS, SOC 2/ISO 27001), produce evidence (configs, logs, access reviews), and remediate gaps.
• Automate provisioning (VM templates, DSC/Ansible for Windows, Terraform for VMware) and configuration drift detection/correction.
• Build runbooks to reduce toil (deploy, scale, rollback, etc)
• Create reliability guardrails (pre-flight checks, change freeze rules, policy controls) as code.
• Continuously refactor scripts/runbooks into idempotent automation.
• Collaborate with development teams and other stakeholders to identify potential risks, such as security vulnerabilities, performance bottlenecks, deployment issues, or configuration errors
• implement various risk mitigation strategies, such as patching, backup, redundancy, encryption, or testing
• Collaborate with product teams and other teams to understand the user needs, expectations, and satisfaction.
• Coach engineers on SRE principles, incident handling, and reliability centric design.
• Lead knowledge sharing, runbooks quality, and postmortem culture (blameless, action-oriented).
• Provide after-hours support for production issues on a rotational basis with other team members to ensure system availability 24/7/365.

• 5+ years of experience in SRE, DevOps, or Software Engineering roles supporting distributed, production-grade environments, with strong skills in troubleshooting microservices, Windows/VMware systems, and on-prem hybrid infrastructure.
• Hands-on experience with automation and observability, including Terraform/Ansible/DSC, CI/CD pipelines, logs/metrics/tracing systems, and enterprise monitoring tools such as Datadog, Prometheus, or Splunk.
• Demonstrated capability with infrastructure automation tools (Terraform, Ansible, Jenkins, Octopus, PowerShell DSC, etc.).
• Proficiency in VMware, Windows Server administration, networking fundamentals, and system-level performance analysis.
• Hands-on experience operating and troubleshooting enterprise microservices, APIs, and distributed application stacks in on-prem/hybrid infrastructure.
• Must have : Ability to provide after-hours production support on a rotational basis to ensure 24/7/365 system availability., * Demonstrated integrity and accountability, including reliability, ownership of mistakes, and commitment to high operational standards across compliance-sensitive environments (PCI-DSS, PCI-CP, SOC2).
• High self-confidence, strong presentation and communication abilities, and a history of leading through example, helping establish a culture of operational excellence and continuous improvement.
• Leadership behaviors, including initiative, thoughtful risk-taking, reflective decision-making, and the ability to take action confidently amid uncertainty.

In the US: The anticipated starting base pay for this position is: $129,098-$189,343 per year (in the primary posting location). Actual compensation will be determined based on geographic location, education, skills and experience. This position is also eligible for the company's discretionary annual incentive plan. In addition to your pay, Entrust offers eligible colleagues and their dependents comprehensive health and well-being programs which include medical, vision, dental, a generous 401(k) matching contribution, life and disability insurance, mental health coaching, virtual fitness programs, paid personal time off plus 12 paid holidays, parental leave and education reimbursement. Please speak with the recruiter for more details. Note: Benefit and Compensation programs are subject to eligibility requirements and other terms of the applicable plan or program. Entrust has the right to end, suspend or amend any of its plans at any time in whole or in part. In Canada: The pay range for this position is $120,500 - $170,500 per year. This position is also eligible for the company's discretionary annual incentive plan. Actual compensation will be determined based on education, skills and experience. In addition to your pay, Entrust offers eligible colleagues and their dependents comprehensive benefits, vacation, paid time off and paid holidays. Please speak with the recruiter for more details. Note: Benefit and Compensation programs are subject to eligibility requirements and other terms of the applicable plan or program. Entrust has the right to end, suspend or amend any of its plans at any time in whole or in part.

For US roles, or where applicable

At Entrust, we're shaping the future of identity centric security solutions. From our comprehensive portfolio of solutions to our flexible, global workplace, we empower careers, foster collaboration, and build solutions that help keep the world moving safely., Headquartered in Minnesota, Entrust is an industry leader in identity-centric security solutions, serving over 150 countries with cutting-edge, scalable technologies. But our secret weapon? Our people. It's the curiosity, dedication, and innovation that drive our success and help us anticipate the future., Where you will be: This hybrid role requires three in - office days per week in Minneapolis , Ottawa , Colorado , or Dallas , as outlined in the job description. Entrust operates with a distributed workforce. About Entrust: Entrust keeps the world moving safely by enabling trusted identities, payments and data protection around the globe. Today more than ever, people demand seamless, secure experiences, whether they're crossing borders, making a purchase, or accessing corporate networks. With our unmatched breadth of digital security and credential issuance solutions, it's no wonder the world's most entrusted organizations trust us., At Entrust, we don't just offer jobs - we offer career journeys. Here is what you can expect when you join our team: * Career Growth: Whether you're a budding developer or a seasoned expert, we're invested in your professional journey. With learning-forward initiatives and exciting challenges, your growth is our priority. * Flexibility: Life is all about balance. Whether you're remote, hybrid, or on-site, we offer flexible options that fit your lifestyle. * Collaboration: Here, your voice matters. Our teams thrive on sharing ideas, brainstorming solutions, and working together to build a better tomorrow. We believe in securing identities-but it doesn't stop there. At Entrust, we're passionate about valuing all identities. Our culture is built on diversity, inclusion, and respect. From unconscious bias training for our leaders to global affinity groups that connect colleagues across the globe, we're creating a community where everyone is encouraged to be themselves., If you're excited by the prospect of innovating, growing your career, and collaborating in a dynamic environment, Entrust is the place for you. Join us in making a difference. Let's build a more secure world-together., Entrust is an innovative leader in identity-centric security solutions, providing an integrated platform of scalable, AI-enabled security offerings. We enable organizations to safeguard their operations, evolve without compromise, and protect their interactions in an interconnected world - so they can transform their businesses with confidence. Entrust supports customers in 150+ countries and works with a global partner network, we are trusted by the world most trusted organizations.