Mid Azure DevOps Software Engineer

📋 Description

• In the role of Mid Azure DEVOPS Engineer, you will be tasked with providing mission-critical support for all departmental applications and their associated infrastructure.

• Your responsibilities include ensuring effective monitoring, scaling, and resilience across all environments ranging from testing to production.

• You will work closely with the development team to troubleshoot code issues, as well as design and implement application build and deployment solutions.

• Collaboration with the software infrastructure and production assurance teams will be essential to facilitate platform provisioning and standardized configuration management.

• You will design, build, and maintain Azure landing zones and platform services, including VNet, Private Endpoints, Key Vault, Azure Firewall/NSGs, and Application Gateway/WAF.

• Infrastructure as Code (IaC) will be implemented using Terraform and/or Bicep; you will also enforce GitOps workflows, including branching, PRs, and policy checks.

• You will create reusable modules, pipelines, and golden patterns for application teams while promoting an automation-first mindset.

• Defining and measuring SLIs/SLOs, error budgets, and reliability roadmaps for critical services will be part of your duties.

• You will implement and fine-tune observability solutions, utilizing Azure Monitor, Log Analytics, Application Insights, and Prometheus/Grafana as appropriate.

• Capacity planning, resiliency testing (including chaos, failover, and disaster recovery), and performance tuning across services will be expected.

• You will construct secure and robust CI/CD pipelines using GitHub Actions or Azure DevOps Pipelines, incorporating automated testing, scans, and approvals.

• Standardizing deployment strategies such as blue/green, canary, and rolling for containerized and PaaS workloads will be a key responsibility.

• Management of container platforms (AKS: node pools, cluster autoscaling, HPA/VPA, ingress, network policies) and registries (ACR) will be required.

• Implementing guardrails with Azure Policy, RBAC, PIM, and Blueprints (or their equivalents) to uphold least privilege and compliance (e.g., SOC 2, ISO 27001, HIPAA when applicable) will be part of your role.

• You will manage secrets and certificates using Key Vault and integrate security testing (SAST/DAST/Container scanning) into the pipelines.

• Supporting vulnerability remediation and adhering to patching SLAs is expected.

• You will own incident response responsibilities, including rotational shifts and on-call duties; leading triage, root cause analysis (RCA), and post-incident reviews will be essential.

• Cost optimization (FinOps), tagging standards, budgets, and proactive spending alerts will be part of your responsibilities.

• Maintaining runbooks, knowledge base articles, and automation for routine operations will be required.

• You will serve as a technical mentor, reviewing designs and PRs and contributing to architectural decisions.

• Partnering with application teams to onboard workloads, define non-functional requirements, and drive platform adoption will be crucial.

• You will manage and participate in the deployment and release of software builds for development, testing, and production environments.

• The operations and monitoring of applications and infrastructure from development to production will be under your purview.

• You will develop code and escalate break-fix issues as they arise.

• Task automation for infrastructure and application provisioning will be part of your role.

• Ensuring all environments meet scaling and resilience requirements will be necessary.

• You will support both customer-facing and internal applications, monitoring submitted tickets, assigning, escalating, and communicating as needed.

• Participation in the design of services and software systems will be expected.

• You will also take part in rotating on-call support duties.

⛳️ Requirements

• A minimum of four (4) years of experience with Azure-based infrastructure and services in a production environment.

• A bachelor’s degree in computer science or a related field.

• An additional four (4) years of experience may be substituted in lieu of a degree.

• At least 2+ years of experience supporting enterprise-level applications and their infrastructure.

• A strong understanding of web technologies and their related infrastructure (including load balancers, DNS, IIS or Apache/WebSphere, authentication and authorization, database connections, etc.).

• Experience with Application Monitoring tools such as Splunk or Dynatrace is required.

• Working knowledge of automation technologies is essential.

• Familiarity with Agile/Scrum methodologies is preferred.

• Deep expertise in various Azure services such as AKS, App Services, Functions, APIM, Azure SQL/MI, Cosmos DB, Storage, Event Hub/Service Bus, Redis, VNet/Peering, Private Link, and Application Gateway/WAF is necessary.

• Strong experience with IaC using Terraform (preferred) and/or Bicep; proficiency in Git-based workflows; experience with GitHub or Azure DevOps is required.

• Proven background in Site Reliability Engineering (SRE) including SLI/SLO design, error budgets, incident management, RCA, and capacity/performance engineering.

• Experience in CI/CD design and operations using GitHub Actions or Azure DevOps Pipelines, including artifact/versioning strategies and release governance.

• Familiarity with Azure observability tools: Monitor, Log Analytics, Application Insights, and related alerting/automations (Action Groups, Logic Apps, Functions).

• A solid understanding of networking fundamentals, including DNS, TLS, routing, firewalls, and load balancing, as well as identity management (AAD/Entra ID) and secrets management (Key Vault).

• Proficiency in scripting with PowerShell and/or Python; knowledge of Linux fundamentals is beneficial.

• Understanding of security best practices such as RBAC, PIM, Azure Policy, and managed IDE (integrated development environment) is required.

• Strong communication skills with the ability to present effectively to both technical and non-technical teams, facilitating cross-functional collaboration and alignment.

• Only U.S. citizens and Green Card holders are eligible for this position. No sponsorship is available. Candidates must be able to obtain and maintain a Federal or DoD "PUBLIC TRUST"; prior approved adjudication of their PUBLIC TRUST is necessary before onboarding with Guidehouse. Candidates with an ACTIVE PUBLIC TRUST or SUITABILITY are preferred.

🏝️ Benefits

• Medical, Rx, Dental & Vision Insurance

• Personal and Family Sick Time & Company Paid Holidays

• Parental Leave

• 401(k) Retirement Plan

• Group Term Life and Travel Assistance

• Voluntary Life and AD&D Insurance

• Health Savings Account, Health Care & Dependent Care Flexible Spending Accounts

• Transit and Parking Commuter Benefits

• Short-Term & Long-Term Disability

• Tuition Reimbursement, Personal Development, Certifications & Learning Opportunities

• Employee Referral Program

• Corporate Sponsored Events & Community Outreach

• Care.com annual membership

• Employee Assistance Program

• Supplemental Benefits via Corestream (Critical Care, Hospital Indemnity, Accident Insurance, Legal Assistance, and ID theft protection, etc.)