DevSecOps Engineer

DevSecOps Engineer

• Department: IT Infrastructure
• Reporting to: Head of IT

The DevSecOps Engineer will play a key leadership role in our team as we automate our multiple development pipelines that flow into Docker and Kubernetes on-premise infrastructure. Part of this role will be to migrate our existing Docker Containers to Kubernetes.

This DevSecOps Engineer will implement a Secure Software Development Lifecycle and will need to understand software development (Dev), but enjoy all the things necessary for improving deploying, monitoring, and operating production services (Ops) whilst ensuring that secure development practices are followed (Sec).

Essential:

• Hands on experience using the Kubernetes platform.
• Provide thought and subject matter leadership in DevSecOps.
• Infrastructure, advising Development Managers in structuring and sizing their plans
• Raising red flags on faulty models or assumptions to prevent misguided implementation.
• Ability to automate release deployments across all stacks.
• Strong experience with release pipelines, including blue/green deployments.
• Develop effective tooling to accelerate deploy and release management.
• Optimize deployments for scalability, efficiency and security.
• Develop infrastructure standards and best practices with a proclivity towards automation.
• Build, manage and upgrade Kubernetes clusters
• Experience building Kubernetes capabilities, integrations and security requirements
• Python or Go
• Lead the design, implementation, and maintenance of CI/CD pipelines
• Develop and maintain automation scripts for system administration and operational tasks
• Monitor system performance, troubleshoot issues, and implement solutions to enhance reliability and scalability.
• Experience with CI/CD tools such as Jenkins, GitLab CI, or Argo CD.
• Work closely with the Head of IT, C.I.S.O. and Directors to develop, implement and coordinate systems and procedures.
• Maintain the configuration, identifying dependencies, potential conflicts, document the process and track a schedule of the deployments for each environment.
• Manage the configuration and up-time of all environments and microservices.
• Experience on managing vulnerability resolution on key environments.
• Design, implement, and maintain highly available and secure infrastructures.
• Build and implement monitoring and logging services.
• Carry out threat modelling and implement secure coding practices
• Ensure security standards are met using automated testing on build pipelines.
• Design and implement a DR/remote service strategy.
• Work with the Infrastructure team for the implementation of ITIL concepts and tools.
• Remain current on broad technology infrastructure changes in the industry and how they may assist with driving down costs or increasing competitive advantage.

Desirable experience for the DevSecOps Engineer:

• Continually manage all cloud assets to ensure right-sized and minimize sprawl.
• Experience of Gitlab
• Experience of AWS Cloud
• Relevant technical certifications