Responsabilities

The candidate will support the Treasury Helm Chart Sanitization initiative, focused on standardizing, securing, and governing all Helm charts and Kubernetes workloads. The goal is to establish a consistent, auditable framework for configuration management and application deployments. A secondary objective is to contribute to Vault enablement for secret management.

· Migrate existing Treasury Helm charts to the new sanitized structure, enforcing consistent Secret/ConfigMap standards and clear ownership

· Eliminate plaintext credentials and remove shared secrets or ConfigMaps across deployments

· Contribute to HashiCorp Vault enablement

· Integrate Kyverno policies for automated governance and compliance checks

· Strengthen operational readiness through consistent health probes, deployment labels, and removal of raw environment variables from Kubernetes manifests

The candidate will collaborate with internal teams to deliver secure, maintainable, and fully compliant Helm charts aligned with Treasury’s long-term Kubernetes governance model.

Requirements

• Kubernetes, Helm, HashiCorp Vault
• Cloud experience (any provider) is a plus