Mindlance is seeking a Senior DevOps Engineer (Azure) to design, build, and operate secure, scalable CI/CD and platform automation for cloud workloads. The role involves driving best practices across Azure and mentoring engineers while contributing to infrastructure-as-code and automation ecosystems.
Responsibilities:
- Architect, implement, and maintain Azure landing zones and foundational services using Infrastructure as Code (Bicep/Terraform/ARM) and GitOps patterns
- Standardize environment provisioning, configuration, and policies with Azure Policy, Blueprints, Managed Identities, and Key Vault
- Own and optimize Azure DevOps and GitHub ecosystems: Pipelines/Actions, Repos, Packages/Artifacts, Environments, and protected branch strategies
- Build reusable pipeline templates, task libraries, and golden paths for app, data, and ML teams (multi-stage YAML, environment approvals, gating, quality signals)
- Implement secure, compliant MLOps workflows integrating Azure Machine Learning, AKS/ACI, Azure OpenAI (or compatible LLM services), Model Registry, and feature stores
- Support reproducible training/inference pipelines, dataset versioning, model promotion, and observability (drift, latency, quality metrics)
- Establish SLOs/SLIs and implement end-to-end telemetry with Azure Monitor, Log Analytics, Application Insights, Dynatrace/Datadog (as applicable)
- Drive incident response, blameless postmortems, runbooks, and reliability engineering improvements (resiliency testing, autoscaling, chaos experiments)
- Embed security-by-design: DevSecOps scanning (SAST/DAST/Secrets/Container), supply chain integrity, SBOM, and policy-as-code (e.g., OPA/Conftest)
- Ensure HIPAA-aligned controls across pipelines, secrets, networking (Private Link, VNET integration), data governance, and auditability
- Implement tagging strategies, budgets/alerts, rightsizing, and workload optimization for Azure services (compute, storage, networking, AI/ML)
- Mentor engineers, review designs/PRs, and advocate best practices, documentation, and knowledge sharing
- Partner with Infrastructure Services Manager to shape roadmaps, standards, and vendor/tool evaluations
Requirements:
- 7+ years in DevOps/SRE/Platform Engineering with at least 4+ years focused on Microsoft Azure
- Expert with Azure DevOps (Repos, Pipelines, Artifacts) and GitHub (Actions, Advanced Security, Packages, Environments)
- Strong IaC experience: Terraform and/or Bicep; modular design, remote state, and policy integration
- Proficiency with scripting/automation (PowerShell, Python, Bash) and YAML-based pipelines
- Containerization & orchestration: Docker, AKS (or Kubernetes equivalents), image registries, and admission controls
- Observability in Azure: Azure Monitor, Log Analytics, App Insights, alerting & dashboards
- Proven track record implementing DevSecOps (SAST/DAST/Secrets scanning, IaC scanning, dependency management, SBOM)
- Understanding of healthcare compliance and security (e.g., HIPAA, HITRUST, PHI handling) or other regulated environments
- Excellent communication, documentation, and cross-functional collaboration skills
- Experience supporting LLM/AI platforms (e.g., Azure ML, Azure OpenAI, model registries, feature stores, vector databases, Prompt/Guardrails)
- GitOps tools (e.g., Argo CD, Flux), policy-as-code (OPA/Conftest, Azure Policy)
- Networking in Azure: Hub/Spoke, Private Link, WAF, Application Gateway, Firewall, ExpressRoute/VPN, DNS, and certificate automation
- Secret management at scale (Key Vault, managed identities, workload identities)
- Security frameworks and supply chain: GitHub Advanced Security, Dependabot, CodeQL, Defender for Cloud, Notary/COSIGN
- Data platform familiarity (Databricks, Synapse, Purview) or eventing (Event Hubs, Service Bus, Kafka)
- Certifications: AZ400, AZ104/AZ305, CKA/CKAD, SC100/200, DP100 (nice to have)