Staff Build Engineer

Key Responsibilities

• Inventory repos, pipelines, users, secrets, and integrations; define cutover strategy and rollback plans. 
• Migrate code, issues and CI from Bitbucket to GHEC with minimal downtime, script repeatable migration runbooks. 
• Normalize repository standards (branch naming, default branches, protection rules, CODEOWNERS, templates)
• Architect multistage pipelines (build->test–>security scans–>artifact publish—>deploy) 
• Implement reusable workflows, composite actions, and organization-level workflow templates. 
• Set up self-hosted runners and autoscaling runner fleets(containerized/ephemeral) for Linux/windows/macOS as needed. 
• Establish secret management via OIDC to cloud providers; remove long live credentials. 
• Enable GitHub Advanced security (Code scanning, Dependabot, secret scanning) 
• Enforce SSO/SAML, branch protection, required checks, signed commits, and PR review policies. 
• Implement policy-as-code (e.g., Open policy agent, repo/rule sets), change-management controls, and audit-ready logs. 
• Ensure pipelines and artifacts are aligned with HIPAA, SOC2, GDPR and least privilege principles avoid PHI in logs.
• Standardize build images, caching, and artifact storage; speed up CI with dependency caches and test parallelization. 
• Create environment promotion flows (dev/stage/prod) with approvals and progressive delivery (canary/blue green) 
• Integrate QA automation, performance tests, and SAST/DAST into pipelines.
• Define and track DORA metrics (lead time, deployment frequency, MTTR, change failure rate) 
• Add telemetry for pipeline duration, queue times, and flake rates; publish dashboards and SLAs for CI.
• Drive communications, training, and documentation; run office hours and migration pilots. 
• Partner with security, compliance, SRE, and product teams.

Education and Experience

• 6+ years in Build/Release/DevOps/Platform Engineering; 2+ years leading large SCM/CI migrations. 
• Proven previous experience in migrating code from Bitbucket to GitHub Enterprise Cloud. 
• Expert with Git, GitHub Enterprise Cloud, and GitHub Actions at an organizational scale. 
• Proven experience running self-hosted/ephemeral runners and tuning CI performance. 
• Strong CI/CD for polyglot stacks (Java/Kotlin, .NET, Node, Python, mobile) 
• Hands-on with artifact registries (GitHub packages/Artifactory), Iac (Terraform), containers (Docker), and one major cloud (AWS/Azure/GCP), preferably Azure. 
• Security background: branch protection, CODEOWNERS, signed artifacts, SBOMs, dependency governance, secrets handling (ODIC) 
• Healthcare or other regulated industry experience; understanding of HIPAA controls and audit requirements. 
• Excellent scripting (Bash/PowerShell) and one high-level language (Python/Go) 
• Bitbucket to GitHub migrations using enterprise importers; Jira/GitHub Projects integrations. 

Analytical and Personal Skills

• Must have good logical reasoning and analytical skills.
• Good Communication skills in English – both written and verbal.
• Demonstrate Ownership and Accountability of their work.
• Attention to detail