Job
Description
The Azure DevOps Lead is a strategic technical leader responsible for both driving enterprise DevOps and DevSecOps excellence across our customer organizations and mentoring a high-performing DevOps engineering team.
This role combines hands-on technical expertise in cloud infrastructure, infrastructure-as-code, and security practices with people leadership, ensuring both cutting-edge solutions and team capability development.Key ResponsibilitiesLeadership StrategyLead and mentor a team of DevOps engineers, fostering a culture of continuous improvement, automation, and security-first mindsetDefine and implement DevOps and DevSecOps strategies, standards, and best practices across the organizationCollaborate with development, operations, and security teams to ensure seamless integration and deliveryDrive infrastructure modernization initiatives and cloud adoption strategiesConduct technical reviews and provide architectural guidance for enterprise-scale deploymentsInfrastructure AutomationDesign, implement, and maintain enterprise-grade infrastructure using Terraform and Infrastructure as Code principlesArchitect and manage Azure cloud environments including multi-tenant architectures and hybrid cloud solutionsDevelop and maintain CI/CD pipelines using Azure DevOps for IaC module validation, Infrastructure provision and application deploymentsImplement automated deployment strategies for Azure App Services and containerized applicationsCreate reusable Terraform modules and maintain infrastructure code repositoriesEstablish governance policies and compliance frameworks for cloud resourcesDevSecOps ImplementationImplement and maintain DevSecOps practices throughout the software development lifecycleConfigure and manage Azure DevOps Advanced Security features including dependency scanning, secret scanning, and code scanningIntegrate Microsoft Defender for Cloud with Azure DevOps pipelines for continuous security validationEstablish security gates and quality gates in CI/CD pipelinesImplement shift-left security practices and automated security testingDevelop and maintain security policies, compliance scanning, and vulnerability management processesConfigure SAST, DAST, and SCA tools within the development pipelineManage security alerts, triaging, and remediation workflowsMonitoring OptimizationImplement comprehensive monitoring solutions using Azure Monitor, Application Insights, and Log AnalyticsDesign and deploy Grafana dashboards for real-time infrastructure and application monitoringEstablish alerting strategies and incident response proceduresOptimize cloud resources for cost efficiency and performanceImplement SLA monitoring and reporting mechanismsConfigure security monitoring and threat detection using Azure Sentinel and Defender for CloudSecurity NetworkingConfigure and manage Azure networking components including VNets, NSGs, and private endpointsImplement and maintain Web Application Firewall (WAF) policies and rulesDesign secure network architectures including DMZ configurations and hub-spoke topologiesEnsure compliance with security standards and SOC2 requirementsManage SSL certificates, DNS configurations, and traffic routing policiesImplement Zero Trust Network Architecture principlesTechnical Tools TechnologiesCore Technologies RequiredCloud Platform: Microsoft Azure (App Services, AKS, Virtual Machines, Storage Accounts, Key Vault, Azure SQL, Azure DB for MySQL and Postgresql)Infrastructure as Code: Terraform (Advanced), Bicep, Azure CLI, PowerShellCI/CD Version Control: Azure DevOps (Repos, Pipelines, Artifacts), Git, GitHub Actions (plus)Containerization: Docker, Container RegistriesOrchestration: Kubernetes, Azure Kubernetes Service (AKS)Monitoring Tools: Azure Monitor, Application Insights, Log Analytics, Grafana, Prometheus, LGTM StackSecurity Tools: Microsoft Defender for Cloud, Azure Security Center, Azure Sentinel, Azure DevOps Advanced Security, Defender for CloudNetworking: Azure Front Door, Load Balancer, WAF, NSG, Azure FirewallScripting Languages: PowerShell, Bash, Python, YAML, JSONOperating Systems: Linux (Ubuntu, RHEL, CentOS), Windows Server 2019/2022Databases: Azure SQL Database, PostgreSQL, MySQL, Redis CacheMessage Queuing: Service BusAuthentication: Azure AD, OAuth 2.0, SAML, Managed Identities
