Azure Devops Engineer

We are seeking a highly motivated and experienced Azure DevOps Engineer to join our dynamic team. The ideal candidate will have subject matter expertise in Azure services Azure AD implementing security controls and threat protection managing identity and access and protecting data applications and networks in cloud and hybrid environments as part of an endtoend infrastructure.

Responsibilities for this role include maintaining the Azure infrastructure & security posture identifying and remediating vulnerabilities by using a variety of security tools implementing threat protection and responding to Infrastructure incident escalations.

The role serves as part of a team dedicated to cloudbased management and security or hybrid environments as part of an endtoend infrastructure. The ability to work within a crossfunctional team of Cloud Engineers App Admins Application Security Cyber Security and DevOps is essential.

The ideal candidate should have strong skills in scripting and automation; IAC(Terraform preffered) a deep understanding of networking virtualization and cloud Ntier architecture; and a strong familiarity with cloud capabilities and products and services for Azure plus other Microsoft products and services.

Responsibilities:

• Maintain and enhance the security posture of the Azure infrastructure.
• Identify and remediate security vulnerabilities using a variety of security tools.
• Implement and manage threat protection solutions.
• Respond to infrastructure incident escalations.
• Automate infrastructure provisioning configuration and deployment processes.
• Develop and maintain comprehensive monitoring and alerting solutions.
• Collaborate with crossfunctional teams to ensure seamless integration of security and operational considerations into the development lifecycle.
• Develop monitoring and dashboards for observability and proactive alerting
• Share learnings and best practices amongst team members including keeping internal knowledge databases updated
• Troubleshoot live production issues and implement solutions to prevent recurrence.
• Automate Implement Monitor
• Create/maintain terraform modules for resources provisioning in Azure infra

• MUST HAVE:
  • 6 years of experience in Microsoft Azure and its native services
  • Cloud Infrastructure: Virtual Machines(Windows & Linux) Azure Database and storage technologies (Storage Accounts SQL Server CosmosDB) Virtual Networks Azure Site Recovery Traffic Manager Functions DNS Key Vault WAF Private Link Azure Automation ARM Templates Azure Load balancer API Gateway.
  • Cloud Management: Azure Policy CA policy RBAC roles Cost Management Monitor and Alerting Site Recovery Disaster Recovery
  • Excellent Communication: Must have the ability to empathize with customers and convey confidence. Able to explain highly technical issues to varied audiences. Able to prioritize and advocate customers needs to the proper channels. Take ownership and work towards a resolution.
  • Proven understanding of Authentication and Directory Services MFA Azure Security Center cloud cost optimization
  • 5 years handson experience in Terraform/PowerShell and automation scripts to support the Azure environment
  • Source code control (e.g. Git)
  • Scripting languages (Python PowerShell Bash)
  • Markup languages (YAML JSON)
  • Working in Agile or DevOps Practice Projects
  • Certification in one or more of the following technologies: Microsoft Azure Solution Architect Microsoft Azure Administrator
• NICE TO HAVE:
  • Good knowledge / handson experience in Network Security Groups and Microsegmentation concepts
  • Good knowledge / handson experience in UDR and Load balancers
  • Good knowledge / handson experience in VPN Gateways and ExpressRoute connection
  • Good knowledge / handson experience in Azure Firewalls
  • Good knowledge / handson experience in Service tags and service endpoints
  • Good knowledge / handson experience in NAT and PAT concepts
  • Good to have Azure Sentinel knowledge and skills
  • Good analytical skills knowledge on OMS queries using KQL