Infrastructure & Security Engineer (Ubuntu / Cloud)

Infrastructure & Security Senior Remote Khartoum North, Sudan (Remote)
Published

Summary

We’re seeking an experienced Infrastructure & Security Engineer to lead the deployment, administration, and protection of our online servers and cloud environments.
The ideal candidate is deeply familiar with Ubuntu, DNS, firewall configuration, and secure production deployments. You will oversee every layer of server reliability — from setup and optimization to hardening, monitoring, and incident response — ensuring our platforms remain fast, stable, and secure.

Responsibilities

Configure, secure, and maintain Ubuntu-based production servers (web, DB, and app layers)

Manage Nginx / Gunicorn / Docker deployments for Django, React, and internal systems

Set up and maintain firewalls (UFW / iptables / Cloudflare) and implement strict access control policies

Design and manage DNS infrastructure, including A, MX, TXT, SPF, DKIM, and DMARC records

Deploy SSL/TLS certificates and enforce HTTPS and HSTS policies across environments

Implement continuous monitoring, backups, and recovery plans

Perform routine CIS benchmark hardening checks in line with the Security Department’s test results

Automate server tasks using shell scripts or Ansible where appropriate

Collaborate with developers to optimize deployment pipelines and CI/CD workflows

Document all infrastructure, network configurations, and response procedures

Requirements

Must have

4+ years of hands-on experience managing Linux servers in production

Deep understanding of networking, DNS, and firewall systems

Proven experience with server hardening, SSH key management, and log auditing

Strong knowledge of Nginx, Gunicorn, Docker, and systemd services

Familiarity with SQL Server, PostgreSQL, or MySQL deployment and backups

Proficiency in troubleshooting performance issues, load balancing, and SSL configuration

Fluency in English (Arabic preferred for internal coordination)

High reliability, confidentiality, and attention to operational detail

Nice to have

Experience with cloud platforms (AWS, DigitalOcean, IONOS, or Azure)

Knowledge of CI/CD pipelines, GitHub Actions, or Jenkins

Background in DevSecOps or compliance frameworks (SOC2, ISO 27001)

Familiarity with container orchestration (Docker Compose, Kubernetes)

Ability to train junior team members and write clean documentation