Senior DevSecOps Engineer – Azure

Senior DevSecOps Engineer

We are looking for a highly skilled, highly experienced Senior DevSecOps engineer to join a growing function within the business, focussing on infrastructure, automation, security practices and providing tooling solutions to streamline the path-to-live for development teams.

The ideal candidate will be passionate about best practices within technology teams, fully supportive of what the group is doing and who wishes to make a difference.

Responsibilities:

• Drive shift left security culture uptake by assisting with security training friendly phishing campaigns as well as conducting brown bag sessions with all staff.
• Assist with the implementation of security gamification, chaos engineering practices, and SBOM implementation.
• Support and secure our existing CI/CD pipelines and assist with migration from monoliths to microservices.
• Experience with containerisation and maintaining, optimising, and securing Azure Kubernetes Clusters.
• Drive alerting and monitoring solutions to provide teams with better optics of the live application ecosystem, using tools such as Grafana, Prometheus, Loki, or ELK.
• Demonstrating a solid understanding of the SDLC and other continuous delivery frameworks and methodologies, such as SCRUM and Kanban.
• Utilise configuration management tools and Infrastructure tools such as Terraform, Ansible, Chef or Pulumi.
• Proven expertise in secrets management software and processes, using tools like Hashicorp Vault or Azure Key Vault.
• Proven experience in obtaining and managing major industry compliance certifications and practices (ISO27k, SOC and GDPR).
• Adhere to agile methodologies and Kanban processes and have a coaching mindset with the ability to understand and adapt to diverse cultures and hierarchies.
• An ability to drive innovation by discovering new technologies, reviewing tooling, and making suggestions on improving our current stack and architecture.
• Drive the change you seek and be an autonomous, proactive, confident, credible, and persuasive team player.
• Collaborate and support developers, analysts, and data scientists to continually improve and innovate.
• Conduct SAST and DAST testing as well as penetration testing and threat simulations to identify potential risks.
• Have a practical understanding of firewall networking, ingress, VPNs, and DNS to ensure seamless integration and communication within the infrastructure estate.

Ideal Candidate:

• Bachelor’s degree in computer science or similar.
• Relevant Cloud Certifications (Azure, AWS or GCP).
• Relevant Hashicorp certifications (Terraform and Vault).
• Excellent written, presentation and influencing skills.
• Excellent project & product management skills.
• Excellent communication and interpersonal skills, with the ability to effectively interact with clients, team members, and stakeholders at all levels.
• Confident, credible, persuasive, and a collaborative team player.
• A history of collaboration, problem-solving and communication drives collective success.

Experience Required:

• 5+ years of experience managing infrastructure in Azure, AWS or GCP.
• 3+ years of experience in DevSecOps role or security operations.
• 1 + years of experience configuring and supporting production firewalls.
• 1 + years of hands-on SIEM configuration and support.
• Expertise with IaC tooling (Hashicorp Terraform).
• Expertise with token / secret management tools (Hashicorp Vault).
• Expertise with monitoring and alerting platforms, such as ELK, DataDog, Grafana, Loki, etc.
• Expertise with Docker / Kubernetes and Helm design and implementation.
• Fundamental understanding of networking, ingress, and DNS along with WAF.
• Fundamental understanding of GIT/version control and SDLC build pipelines.
• Experience with GitHub Actions.
• Exposure to microservices architecture and experience with API Gateways.
• Object-orientated and non-object-orientated coding is highly advantageou