Azure DevOps Lead

The Azure DevOps Lead is a strategic technical leader responsible for both driving enterprise DevOps and DevSecOps excellence across our customer organizations and mentoring a high-performing DevOps engineering team. This role combines hands-on technical expertise in cloud infrastructure, infrastructure-as-code, and security practices with people leadership, ensuring both cutting-edge solutions and team capability development.

Key Responsibilities:

Leadership & Strategy:

• Lead and mentor a team of DevOps engineers, fostering a culture of continuous improvement, automation, and security-first mindset
• Define and implement DevOps and DevSecOps strategies, standards, and best practices across the organization
• Collaborate with development, operations, and security teams to ensure seamless integration and delivery
• Drive infrastructure modernization initiatives and cloud adoption strategies
• Conduct technical reviews and provide architectural guidance for enterprise-scale deployments

Infrastructure & Automation:

• Design, implement, and maintain enterprise-grade infrastructure using Terraform and Infrastructure as Code principles
• Architect and manage Azure cloud environments including multi-tenant architectures and hybrid cloud solutions
• Develop and maintain CI/CD pipelines using Azure DevOps for IaC module validation, Infrastructure provision and application deployments
• Implement automated deployment strategies for Azure App Services and containerized applications
• Create reusable Terraform modules and maintain infrastructure code repositories
• Establish governance policies and compliance frameworks for cloud resources

DevSecOps Implementation:

• Implement and maintain DevSecOps practices throughout the software development lifecycle
• Configure and manage Azure DevOps Advanced Security features including dependency scanning, secret scanning, and code scanning
• Integrate Microsoft Defender for Cloud with Azure DevOps pipelines for continuous security validation
• Establish security gates and quality gates in CI/CD pipelines
• Implement shift-left security practices and automated security testing
• Develop and maintain security policies, compliance scanning, and vulnerability management processes
• Configure SAST, DAST, and SCA tools within the development pipeline
• Manage security alerts, triaging, and remediation workflow

Monitoring & Optimization:

• Implement comprehensive monitoring solutions using Azure Monitor, Application Insights, and Log Analytics
• Design and deploy Grafana dashboards for real-time infrastructure and application monitoring
• Establish alerting strategies and incident response procedures
• Optimize cloud resources for cost efficiency and performance
• Implement SLA monitoring and reporting mechanisms
• Configure security monitoring and threat detection using Azure Sentinel and Defender for Cloud

Security & Networking

• Configure and manage Azure networking components including VNets, NSGs, and private endpoints
• Implement and maintain Web Application Firewall (WAF) policies and rules
• Design secure network architectures including DMZ configurations and hub-spoke topologies
• Ensure compliance with security standards and SOC2 requirements
• Manage SSL certificates, DNS configurations, and traffic routing policies
• Implement Zero Trust Network Architecture principles

Technical Tools & Technologies

Core Technologies Required:

• Cloud Platform

  : Microsoft Azure (App Services, AKS, Virtual Machines, Storage Accounts, Key Vault, Azure SQL, Azure DB for MySQL and Postgresql)

• Infrastructure as Code

  : Terraform (Advanced), Bicep, Azure CLI, PowerShell

• CI/CD & Version Control

  : Azure DevOps (Repos, Pipelines, Artifacts), Git, GitHub Actions (plus)

• Containerization

  : Docker, Container Registries

• Orchestration

  : Kubernetes, Azure Kubernetes Service (AKS)

• Monitoring Tools

  : Azure Monitor, Application Insights, Log Analytics, Grafana, Prometheus, LGTM Stack

• Security Tools

  : Microsoft Defender for Cloud, Azure Security Center, Azure Sentinel, Azure DevOps Advanced Security, Defender for Cloud

• Networking

  : Azure Front Door, Load Balancer, WAF, NSG, Azure Firewall

• Scripting Languages

  : PowerShell, Bash, Python, YAML, JSON

• Operating Systems

  : Linux (Ubuntu, RHEL, CentOS), Windows Server 2019/2022

• Databases

  : Azure SQL Database, PostgreSQL, MySQL, Redis Cache

• Message Queuing

  : Service Bus

• Authentication

  : Azure AD, OAuth 2.0, SAML, Managed Identities