GitHub Administrator

Creating Peace of Mind by Pioneering Safety and Security

At Allegion, we help keep the people you know and love safe and secure where they live, work and visit. With more than 30 brands, 12,000+ employees globally and products sold in 130 countries, we specialise in security around the doorway and beyond. In 2024 we were awarded the Gallup Exceptional Workplace Award, which recognises the most engaged workplace cultures in the world.

• Administer Allegion’s Git Hub Enterprise Cloud instance and/or Server: manage organizations, repositories, teams, branch protection, repo templates, policies, and naming conventions.
• Facilitate alignment across Enterprise software product teams on common Enterprise concerns, using tools such as Architecture Decision Records.
• Influence and promote an engineering culture that balances security with collaboration across product teams, encouraging shared code, communication, security best practices, and compliance.
• Support product teams as they configure and operate Git Hub Actions runners (self‑hosted and managed) and ensure runner capacity, security, and availability.
• Enforce identity and access management: SSO/OIDC (Okta, Azure AD), SCIM provisioning, role‑based access controls, secret protection, and fine‑grained personal access token governance.
• Implement security guardrails: branch protections, required status checks, CODEOWNERS, dependency scanning (Dependabot), secret scanning, code scanning (SAST), and enforce approved apps/integrations.
• Manage repository lifecycle policies, archival/retention, forking rules, and data residency/backups (if using Enterprise Server).
• Integrate Git Hub with CI/CD, artifact repositories, ticketing systems (e.g., Jira), and other internal tooling via apps, webhooks, and OAuth apps.
• Monitor health and usage: audit logs, Git Hub Insights/Advanced Security metrics, usage reporting, licence seat management, and cost optimisation.
• Lead incident response and post‑mortems for Git Hub‑related outages or security events; maintain runbooks and recovery procedures.
• Build automation for repetitive admin tasks (repo creation, onboarding, team provisioning, licence assignment) using Git Hub APIs, Graph
  
  QL, or automation tools.
• Manage vendor relationships and licensing with Git Hub; coordinate upgrades, support engagements, and roadmap items.
• Provide developer enablement: onboarding, documentation, best practices, training sessions, and troubleshooting support for teams.
• Maintain compliance artefacts and support audits (SOX, ISO, SOC 2) related to source control and developer tooling.
• Evaluate and pilot new Git Hub features, apps, and third‑party tools to improve developer experience and security posture.

• High availability and reliability of Git Hub services (target as defined by SLA).
• Low mean time to resolution for Git‑related incidents.
• Increased automation of onboarding and repo provisioning (percent of teams using self‑service templates).
• Reduction in security issues (secret commits, vulnerable dependencies) through automated scanning and policy enforcement.
• Efficient licence utilisation and predictable, optimised costs for seats and runners.
• Improved developer satisfaction with source control and CI workflows.

• 3–5 years administering Git Hub Enterprise, Git Hub Cloud, or equivalent large‑scale Git hosting solutions (Git Lab, Bitbucket Server) in an enterprise environment.
• Strong practical experience with Git internals and advanced workflows (branching strategies, rebases, merge strategies, sub‑modules/sub‑trees).
• Hands‑on experience with Git Hub Actions and/or other CI systems; experience operating runners and securing CI infrastructure.
• Familiarity with identity providers and SSO (SAML/SCIM/OIDC) and provisioning processes (Okta, Azure AD).
• Experience with automation using Git Hub REST/Graph
  
  QL APIs and scripting languages (Python, Bash, Go, or JavaScript/Type Script).
• Solid understanding of repository security best practices (SAST/SCA/DAST tooling integrations, secret scanning, dependency management).
• Experience with monitoring, logging, and audit log analysis for…