remote

Service Mesh Engineer - Bright Vision Technologies

Software Engineer

Design, implement, and maintain service mesh solutions using Istio or Linkerd on Kubernetes, ensuring secure, observable microservice communication and seamless CI/CD integration for scalable enterprise applications.

About the role

Service Mesh Engineer

Design and operate service mesh platforms — primarily Istio and Linkerd — across multi-cluster Kubernetes environments.
Implement and operate mTLS, certificate rotation, and identity propagation across the mesh.
Define traffic management policies including routing, retries, circuit breaking, and fault injection.
Integrate the mesh with ingress, egress, and API gateway tiers for unified traffic management.
Build observability for mesh traffic including distributed tracing, golden signals, and topology visualization.
Design multi-cluster and cross-cluster mesh topologies for high availability and tenant isolation.
Profile and optimize mesh performance, sidecar resource usage, and control-plane footprint, applying systematic measurement, targeted improvements, and data-driven validation to deliver quantifiable gains in throughput, latency, or resource efficiency.
Develop paved-road adoption patterns and onboarding guides that make mesh adoption easy for app teams.
Implement authorization policies and zero-trust patterns at the service mesh layer.
Operate service mesh upgrades, control-plane lifecycle management, and configuration governance, applying disciplined release practices that keep the mesh current without disrupting workloads running on top of it.
Partner with SRE, platform, and security teams on mesh policy and incident response.
Troubleshoot complex networking, mTLS, and traffic issues spanning sidecar and gateway tiers.
Maintain runbooks, architecture diagrams, and onboarding materials for the service mesh platform.
Stay current with Istio, Linkerd, Cilium, and broader service mesh ecosystem developments.
Bachelor’s degree in Computer Science or a related field.
Five or more years of experience in platform engineering, SRE, or networking roles.
Hands-on experience operating Istio or Linkerd in production.
Strong understanding of Envoy proxy internals and configuration.
Deep Kubernetes expertise including networking, CNI, and ingress.
Strong understanding of mTLS, PKI, and certificate lifecycle management.
Experience with distributed tracing and observability for mesh traffic.
Proficiency in Go or Python for tooling and automation.
Strong troubleshooting skills across networking, application, and control plane layers.
Excellent communication and collaboration skills.
Experience with multi-cluster Istio or Linkerd deployments.
Familiarity with Cilium service mesh and eBPF networking.
Open-source contributions to service mesh projects.
Experience with SPIFFE/SPIRE for workload identity.
Exposure to zero-trust networking initiatives at enterprise scale.

Equal Employment Opportunity (EEO) Statement

Bright Vision Technologies (BV Teck) is committed to eq

About the role

Service Mesh Engineer

Design and operate service mesh platforms — primarily Istio and Linkerd — across multi-cluster Kubernetes environments.
Implement and operate mTLS, certificate rotation, and identity propagation across the mesh.
Define traffic management policies including routing, retries, circuit breaking, and fault injection.
Integrate the mesh with ingress, egress, and API gateway tiers for unified traffic management.
Build observability for mesh traffic including distributed tracing, golden signals, and topology visualization.
Design multi-cluster and cross-cluster mesh topologies for high availability and tenant isolation.
Profile and optimize mesh performance, sidecar resource usage, and control-plane footprint, applying systematic measurement, targeted improvements, and data-driven validation to deliver quantifiable gains in throughput, latency, or resource efficiency.
Develop paved-road adoption patterns and onboarding guides that make mesh adoption easy for app teams.
Implement authorization policies and zero-trust patterns at the service mesh layer.
Operate service mesh upgrades, control-plane lifecycle management, and configuration governance, applying disciplined release practices that keep the mesh current without disrupting workloads running on top of it.
Partner with SRE, platform, and security teams on mesh policy and incident response.
Troubleshoot complex networking, mTLS, and traffic issues spanning sidecar and gateway tiers.
Maintain runbooks, architecture diagrams, and onboarding materials for the service mesh platform.
Stay current with Istio, Linkerd, Cilium, and broader service mesh ecosystem developments.
Bachelor’s degree in Computer Science or a related field.
Five or more years of experience in platform engineering, SRE, or networking roles.
Hands-on experience operating Istio or Linkerd in production.
Strong understanding of Envoy proxy internals and configuration.
Deep Kubernetes expertise including networking, CNI, and ingress.
Strong understanding of mTLS, PKI, and certificate lifecycle management.
Experience with distributed tracing and observability for mesh traffic.
Proficiency in Go or Python for tooling and automation.
Strong troubleshooting skills across networking, application, and control plane layers.
Excellent communication and collaboration skills.
Experience with multi-cluster Istio or Linkerd deployments.
Familiarity with Cilium service mesh and eBPF networking.
Open-source contributions to service mesh projects.
Experience with SPIFFE/SPIRE for workload identity.
Exposure to zero-trust networking initiatives at enterprise scale.

Equal Employment Opportunity (EEO) Statement

Bright Vision Technologies (BV Teck) is committed to eq

Service Mesh Engineer - Bright Vision Technologies

About the role

Service Mesh Engineer - Bright Vision Technologies

About the role

Skills