As IT Server \& Infrastructure Specialist, you will own the full lifecycle of server provisioning, website deployment, CI/CD automation, security hardening, and compliance operations across IQ Hub's global portfolio. You will be the single point of ownership for server health, uptime, and regulatory readiness across our infrastructure — working directly with development, content, and compliance teams to ensure every website is deployed, secured, and performing at standard.
- *1\. Server Provisioning \& OS Management**
- Provision and configure servers across Ashburn, Nuremberg, and Helsinki data centres
- Install, harden, and maintain Linux operating systems with regular patching and update cycles
- Configure OS\-level performance tuning, resource limits, and kernel parameters for high\-availability web workloads
- *2\. Coolify Deployment \& Website Operations**
- Deploy and maintain Coolify as the primary self\-hosted PaaS layer for all IQ HUB websites
- Onboard and configure new websites end\-to\-end, from environment setup through to live HTTP/HTTPS verification
- Manage SSL/TLS certificate provisioning, renewal automation, and domain binding
- Conduct full performance testing for each hosted site — page load, load response, uptime stability, and bottleneck reporting
- *3\. GitHub Enterprise CI/CD Integration**
- Connect server infrastructure to the IQ HUB GitHub Enterprise Cloud account, enabling automated CI/CD pipelines via GitHub Actions
- Design, maintain, and optimise deployment workflows for approximately 500 websites per year
- Implement branch protection rules, deployment gates, and rollback procedures
- Coordinate with frontend and backend development teams on pipeline triggers, environment variables, and secrets management
- *4\. Cloudflare Integration \& Domain Management**
- Integrate Cloudflare on all applicable domains for CDN, DDoS protection, WAF rules, and DNS management
- Manage DNS records, domain propagation, and nameserver configurations across all active websites
- Implement Cloudflare Page Rules, Cache Rules, and Workers where required
- Maintain domain renewal schedules and registrar coordination to prevent expiry incidents
- *5\. Monitoring, Uptime \& Incident Response**
- Configure and maintain BetterUptime monitoring — 60\-second check intervals as standard
- Set up alerting, on\-call escalation paths, and incident response runbooks
- Provide 24×7 on\-call availability for critical server and infrastructure incidents
- Respond to and resolve production incidents within agreed SLA windows with full post\-incident documentation
- *6\. Database Connectivity \& Backup**
- Manage PostgreSQL connectivity, connection pooling, and credential rotation
- Configure and maintain Backblaze B2 automated daily database dumps with retention policies and restore testing
- Execute server and database migrations with zero\-downtime strategies and rollback plans
- *7\. Security Hardening \& Firewall Management**
- Apply and maintain firewall rules (UFW/iptables) and network segmentation across all servers
- Conduct routine security hardening — SSH key\-only access, fail2ban, intrusion detection, port auditing, and vulnerability scanning
- Manage secrets, API keys, and credentials through secure vaulting practices
- *8\. GDPR Compliance \& Data Protection**
- Ensure EU servers comply with GDPR data residency requirements at the infrastructure level
- Implement and validate Google Consent Mode v2 technical prerequisites on hosted event and marketing websites
- Maintain server\-level audit logs and access controls aligned with GDPR Article 32 technical safeguards
- Support GDPR audit responses related to data flows, retention, cross\-border transfers, and processor records
- *9\. AI\-Assisted Deployment \& Automation**
- Leverage AI\-powered tools (including Claude Code or equivalent) for automated deployment pipelines and infrastructure\-as\-code generation
- Build and maintain automation scripts for provisioning, health checks, certificate renewals, and backup verification
- Identify and implement opportunities to reduce manual toil through AI\-assisted monitoring and incident triage
- *Educational Background**
- *REQUIRED QUALIFICATION**
- *Degree in Computer Science, Information Technology, Computer Engineering, or a closely related technical discipline**
- Eligible disciplines include Computer Science, Information Technology, Computer Engineering, Electronics \& Communication, or equivalent technical qualifications with demonstrable hands\-on infrastructure experience. Candidates from non\-technical backgrounds (business, humanities, arts) are not eligible for this position.*
- *Technical Knowledge \& Required Skills**
- *Infrastructure \& Linux**
- 3–6 years of hands\-on Linux server administration (Ubuntu/Debian preferred)
- Proven experience with self\-hosted PaaS platforms — Coolify, Dokku, CapRover, or Portainer
- Strong proficiency in GitHub Actions CI/CD pipeline design and GitHub Enterprise Cloud administration
- Cloudflare configuration — DNS, WAF, CDN, DDoS mitigation, Page Rules, and Workers
- Domain management — DNS records, registrars, propagation troubleshooting
- SSL/TLS certificate management — Let's Encrypt, Certbot
- PostgreSQL administration — connectivity, performance tuning, backup and restore
- Backblaze B2 or equivalent object storage for automated backup workflows
- BetterUptime or comparable monitoring and uptime management platforms
- *Security \& Compliance**
- Security hardening — UFW/iptables, fail2ban, SSH hardening, vulnerability scanning
- Demonstrable knowledge of GDPR technical safeguards at the infrastructure level
- Familiarity with Google Consent Mode v2 and cookie compliance infrastructure requirements
- Hands\-on experience using AI\-powered DevOps tools — Claude Code, GitHub Copilot, or similar
- Scripting proficiency in Bash and Python for operational automation
- Infrastructure\-as\-code experience — Terraform, Ansible, or equivalent (advantageous)
- Strong written and verbal communication in English for technical documentation and cross\-team coordination
- Ability to work independently, prioritise under pressure, and manage multiple concurrent deployments
- Detail\-oriented approach to documentation — runbooks, incident reports, and change logs
- Collaborative mindset when working with frontend/backend developers and compliance stakeholders
- Self\-motivated with ability to meet SLA targets and respond to production incidents with urgency
- Adaptable to evolving infrastructure requirements and technology stack changes
- Global exposure — own the infrastructure serving conferences and events across 34 cities in 14 countries
- Structured career progression with a clear path from Specialist to Senior Engineer to Infrastructure Lead
- Full ownership of a production\-grade, multi\-region server topology from day one
- Opportunity to work with AI\-powered deployment and automation tooling including Claude Code
- Competitive monthly salary plus performance\-linked incentives
- Dynamic, fast\-growth environment alongside senior professionals across technology, research, and global events
- *IT Server \& Infrastructure Specialist**
Year 1–2 — Own full server lifecycle: provisioning, deployments, monitoring, security, and GDPR compliance across all three data centres.
- *Senior Infrastructure Engineer**
Year 2–4 — Lead infrastructure architecture decisions, mentor junior team members, and drive automation and AI\-assisted deployment initiatives.
- *Infrastructure Lead / DevOps Lead**
Year 4–6 — Own the technology infrastructure roadmap, manage vendor relationships, and align infrastructure strategy with IQ HUB's global growth plans.
- *Head of Technology Infrastructure**
Year 6\+ — Shape IQ HUB's long\-term infrastructure strategy across cloud, compliance, and AI\-augmented operations at an executive level.
- *30\-Day Onboarding Delivery Checklist**
The successful candidate will be expected to execute and sign off the following deliverables within the first 30 days:
Server provisioning confirmed — Ashburn (USA), Nuremberg (EU Primary), Helsinki (EU Failover), correct region and plan verified
☐ Pending
OS installation and full update cycle completed on all three servers
☐ Pending
Coolify deployed and all assigned websites operational with environment variables and domain bindings confirmed
☐ Pending
Cloudflare integration active on all applicable domains — DNS, WAF, CDN, and SSL configured
☐ Pending
BetterUptime monitoring configured for all active sites — 60\-second check intervals, alerting and escalation paths set up
☐ Pending
PostgreSQL connectivity verified — connection pooling and credentials secured
☐ Pending
Backblaze B2 backup configured — automated daily database dumps running with tested restore procedure
☐ Pending
Firewall rules applied and security hardening completed — SSH key\-only, fail2ban active, port audit documented
☐ Pending
Test site deployed and verified — HTTP/HTTPS response confirmation documented for all environments
☐ Pending
In\-house event website hosted and full performance test completed — report covering page load, load response, uptime stability, and bottlenecks submitted
☐ Pending
- *Additional Requirements**
- Candidates must be able to reliably commute to or relocate to Vadodara, Gujarat before starting work
- 24×7 on\-call availability required for critical infrastructure incidents — on\-call rotation applies
- Immediate joiners preferred
Send your CV with a brief note on your infrastructure experience and the projects you have owned to:
- *Email : wilson.pena@iq\-hub.com**
- *Phone** \+91 9377333411 *(please call after 7:30 PM IST only)*
- *Joining** Immediate joiners preferred
Job Type: Full\-time
Pay: From ₹40,000\.00 per month
Language
Work Location: In person