ATL / TL - Cloud DevOps & Data Engineering

Responsibilities

• Design and implement cloud infrastructure on Microsoft Azure, ensuring scalability, reliability, and security.
• Architect and manage containerised workloads using Docker and orchestration on Azure Kubernetes Service (AKS).
• Manage AKS clusters, including cluster provisioning, node pool management, upgrades, autoscaling, and cost optimisation.
• Configure and manage Kubernetes-native components including Ingress controllers, network policies, namespaces, RBAC, resource quotas, and managed identities.
• Implement and maintain Secret Management solutions within Kubernetes (Azure Key Vault integration and Kubernetes-native secrets integrations).
• Drive GitOps adoption using Argo CD - maintaining declarative, version-controlled infrastructure and application state.
• Build and maintain CI/CD pipelines using Azure DevOps or GitHub Actions for automated build, test, and deployment workflows.
• Provision and manage infrastructure as code using Terraform or Bicep - writing and maintaining modules/templates for Azure (AKS, networking, storage, identities, Key Vault).
• Design and manage Azure network topology - VNets, subnets, peering, and private endpoints.
• Set up and maintain observability stacks for metrics, logs, traces, dashboards, and alerting.
• Collaborate with development teams to embed DevSecOps practices - vulnerability scanning, policy enforcement, and compliance.
• Mentor and guide engineers on DevOps practices, tooling, and cloud architecture.

Requirements

• Minimum 4–9 years of overall experience, including at least 2–3+ years in a DevOps/Cloud engineering role.
• Hands-on experience with Docker image authoring, multi-stage builds, networking, volumes, and troubleshooting.
• Experience with Azure Kubernetes Service (AKS) including cluster lifecycle management, autoscaling, and workload deployment.
• Understanding of core Kubernetes concepts: Deployments, Services, ConfigMaps, StatefulSets, DaemonSets, Jobs, namespaces, and resource management.
• Experience with Azure hosting technologies: App Services, Azure Container Registry (ACR), Virtual Networks, Azure Load Balancer, and AKS.
• Familiarity with Azure IAM, Managed Identities, and role-based access control.
• Azure networking: experience designing and managing Azure network topology including VNets, subnets, peering, and private endpoints.
• Ingress: experience configuring and managing Ingress controllers, TLS termination, and routing rules.
• Secret Management: experience integrating secrets management solutions (Azure Key Vault or equivalent operators/controllers).
• GitOps: experience implementing GitOps workflows using Argo CD or similar tools; maintaining cluster state via Git repositories.
• cert-manager: experience with certificate management.
• Node Pool Management: understanding of taints/tolerations, autoscaling, and workload scheduling.
• Experience building pipelines in Azure DevOps Pipelines or GitHub Actions.
• Terraform or Bicep hands-on experience with either tool:
  • Terraform: writing and maintaining modules for Azure (AKS, networking, storage, identities, Key Vault), state management, and plan/apply workflows.
  • Bicep: authoring templates and modules for Azure, deploying via Azure CLI/pipelines.

• Understanding of when to use different IaC tools based on context.
• Experience with monitoring and alerting platforms (Prometheus, Grafana, Azure Monitor, or equivalent).
• Experience building dashboards and setting up alerting.
• Familiarity with metrics, logs, and basic observability concepts.
  

Bonus Points

• Experience working in a DevSecOps environment with a focus on vulnerability scanning, policy enforcement, and compliance
• Experience mentoring or guiding engineers on DevOps practices, tooling, and cloud architecture.

• Exposure to cost optimisation strategies within Azure environments.

• Experience working in cross-functional teams and client-facing environments.