3i Infotech Ltd.Remote
Senior Azure DevSecOps Platform Engineer
United States
Contract
2 hours ago
H1B Sponsor Likely
Key skills
Azure DevOpsCI/CD automationAzure security best practicesInfrastructure as CodeAzure IaaSPaaSYAML configurationPowerShell automationNetworking knowledgeAnalytical skillsScripting expertiseITIL familiarityCross-functional teamworkPython.NETBashPowerShellAzureVaultIAMLogic AppsService BusSaaSCI/CDProblem SolvingNetwork SecurityZero Trust
About this role
3i Infotech Ltd. is seeking an experienced Azure DevSecOps Platform Engineer to design, implement, and maintain secure DevOps pipelines on Azure. The ideal candidate will have expertise in Azure cloud services, CI/CD automation, security best practices, and infrastructure as code to enhance operational efficiency and ensure secure development environments.
Responsibilities:
- Manage, and operate Azure-based PaaS and SaaS resources using IaC (ARM templates, Azure CLI, Powershell)
- Manage, and operate Azure PaaS and SaaS layers for storage, network components, security integrations and integrations/services, virtual networks, Azure-based VPNs, web application firewalls, intrusion detection systems, intrusion prevention systems
- Provision, manage, and operate Azure-based web and development services (load balancers, application gateways, traffic management, App Services, App Configuration, App Insights, Service Bus, Functions, logic apps et al)
- Provision, manage, and operate platform security solutions by proactively identifying and deploying solutions that increase platform security, observability, and reliability
- Automate deployments, configurations where possible. Perform audits of deployments and configurations. Create DevOps efficiencies where possible using PaaS products and custom developed tools
- Create and manage observability processes and protocols for Azure workloads including thresholds, triggers, action groups, ticketing system and web hook integrations. Monitor, troubleshoot, maintain, and report metrics on service and application issues (uptime, redundancy, latency, traffic, error rates, saturation, performance, usage, etc.)
- Develop, implement, and maintain relevant documentation, guidelines, checklists, and policies to promote continuous integration, ensure and improve data security, and reduce the possibility of 'human error'
- Enforce Azure security best practices, including identity and access management (IAM), role-based access control (RBAC), and network security policies
- Automate compliance checks and security audits using Azure Policy, Defender for Cloud, and Microsoft Sentinel
- Monitor and remediate vulnerabilities using Microsoft Defender for DevOps, Security Center, and SIEM solutions
- Work directly 3rd Party vendors to help us achieve uptime and availability targets
- Review and maintain security and event logs, create automated processing of events
- Proactively analyze and bring forth ideas for continuous improvement
- Communicate effectively with stakeholders at all levels to provide regular updates on progress, challenges, and resolutions
- Be available as an on-call support engineer on a rotational basis during non-business hours to support critical production incidents
Requirements:
- 8+ years of hands-on experience in Azure DevOps, security, and cloud automation
- Strong expertise in Azure DevOps (Pipelines, Repos, Artifacts, Boards) and CI/CD tools
- Azure IaaS and PaaS in compute, storage, and networking - experience of leveraging the same and designing, implementing, and deploying Business Mission Critical applications
- Deep understanding of Azure security best practices, IAM, RBAC, Key Vault, and network security
- Experience in leading Azure landing zone design and implementation
- Knowledge on Networking - VNet, ExpressRoute, Ingress/Egress patterns
- Expertise in Azure DevOps and YAML configuration of pipeline
- Azure Integration Components (Logic Apps, Functions, App Services)
- Automation experience using ARM templates/Powershell
- Strong analytical, troubleshooting, and problem solving ability
- Administering / managing .NET code deployments and applications
- Scripting and automation expertise in PowerShell, Bash, or Python
- Familiarity with Zero Trust Security, DevSecOps principles, and industry compliance standards (ISO 27001, NIST, CIS, SOC2, GDPR)
- Experience with StateRAMP or Fed RAMP certification process and audits
- Experience working in an ITIL-based support environment
- Familiarity with GDPR, data security, and compliance requirements within Dynamics 365 implementations
- Ability to manage multiple priorities, meet deadlines, and work effectively in a fast-paced environment
- Experience working in cross-functional teams