GitHub Enterprise Engineer

Nasze wymagania: Strong experience administering GitHub Enterprise Cloud at scale, or equivalent background in platform engineering, developer tooling, identity integration, and DevSecOps governance. Hands‑on experience with Enterprise Managed Users and identity provider integration, ideally Microsoft Entra ID, including RBAC, SAML/OIDC SSO, SCIM provisioning, access reviews, and least‑privilege models. Proven experience governing GitHub Actions, reusable workflows, and enterprise‑level workflow policies, supported by strong automation and scripting skills (Python, PowerShell, Bash) and use of GitHub APIs. Experience implementing and operating GitHub Advanced Security (CodeQL, Dependabot, dependency review, secret scanning, push protection), along with branch protections, required checks, audit logging, and compliance reporting in regulated environments. Familiarity with Infrastructure as Code and policy‑driven automation (e.g. Terraform, Bicep), as well as Copilot administration, adoption governance, and usage tracking. Mile widziane: Experience supporting regulated industries (financial services, gaming, lottery, public sector),integrating GitHub with Azure or AWS, governing self‑hosted runners, supporting audit readiness and SOX‑aligned controls, and establishing GitHub operating standards across complex or multi‑organization environments. O projekcie: At Pretius, we are looking for GitHub Enterprise Engineer to a global-scale platform in the field of gaming and lotteries project. Zakres obowiązków: Administer GitHub Enterprise Cloud (organizations, repositories, policies, licensing) and monitor platform health, usage, and adoption, providing insights and recommendations. Manage identity integration with Microsoft Entra ID, including Enterprise Managed Users (SAML/OIDC, SCIM), RBAC aligned to least‑privilege, onboarding/offboarding, access reviews, and secure, auditable authentication. Define and enforce governance and compliance standards: repository conventions, rulesets, branch/tag protections, templates, approvals, audit logging, evidence retention (e.g. SOX), and business continuity (backup and recovery). Own security and risk management, including GitHub Advanced Security (CodeQL, Dependabot, secret scanning), incident response, credential exposure handling, and governance of apps, OAuth, tokens, third‑party access, and GitHub Actions. Act as the primary liaison with GitHub support, automate administration via APIs and scripting (Python/PowerShell/Bash), manage self‑hosted runners (if applicable), and provide documentation, runbooks, training, and SME support. Oferujemy: We focus on long-term relationships based on fair principles and reliability. Co-financing of the Multisport card and Medicover private healthcare. Modern office available. Team bonding activities, internal courses, conferences, certifications.