Senior DevSecOps Architect

About role

Senior DevSecOps Architect with strong expertise in Azure DevOps, Terraform, Helm, API Management (APIM), and a comprehensive understanding of cloud infrastructure. This role will help shape and optimize our DevOps processes, ensuring robust security, automation, and scalable cloud solutions.

Key Responsibilities:

• CI/CD Pipeline & Automation:
  • Design, implement, and manage CI/CD pipelines using Azure DevOps, integrating testing, security scanning, and deployment automation.
  • Implement Terraform provisioning for infrastructure management and Helm for Kubernetes deployments.

• Artifact Repository Management:
  • Set up and maintain artifact repositories (e.g., Artifactory or Nexus) to manage packages, libraries, and other artifacts used in the pipeline.

• API Management (APIM):
  • Set up, configure, and manage Azure API Management (APIM) to expose, secure, and monitor APIs, ensuring proper versioning, security, and scalability.
  • Develop best practices for API gateway management, including monitoring, authentication, rate limiting, and logging.
  • Collaborate with development teams to integrate APIs into the CI/CD pipeline for seamless deployment and testing.
• Authentication, Code Quality & Security:
  • Implement authentication strategies using tools like Multi-Factor Authentication (MFA), SAML, OpenID Connect, and OAuth for secure user access to cloud resources and applications.
  • Integrate OAuth 2.0 for authorization and SAML for single sign-on (SSO) functionality in enterprise applications.
  • Leverage Azure Active Directory (Azure AD) for managing identity and access across on-premises and cloud infrastructure.
  • Implement SonarQube for static code analysis, ensuring high-quality code and early detection of vulnerabilities.
  • Lead efforts for security scanning, pen testing, and infrastructure scanning to ensure secure development and deployment practices.
    • Design and implement Aqua Scan for container and Kubernetes vulnerability scanning.
    • Design and implement Nexus IQ for scanning open-source dependencies and container images.

• Azure Active Directory & Infrastructure:
  • Manage Azure AD Domain Services and integrate on-premises Active Directory with Azure IaaS for unified identity management.

• Azure Monitoring & Automation:
  • Implement and manage Azure Monitoring, Log Analytics, and Alerting to ensure visibility into cloud resource health and performance.
  • Set up Azure Automation for routine tasks and Azure Governance Policies for streamlined management.

• Backup & Disaster Recovery:
  • Configure storage accounts, Key Vaults, and Service Vaults for secure management of sensitive data.
  • Implement Azure Backup and disaster recovery strategies for business continuity.

• Serverless & Lambda:
  • Lead the design and deployment of serverless architectures using Azure Functions to ensure scalable, event-driven solutions.

• Logging & Monitoring Frameworks:
  • Set up and maintain ELK Stack (Elasticsearch, Logstash, Kibana), Grafana/Loki, and other logging frameworks for application and infrastructure observability.
  • Integrate logging and monitoring data with tools like Tableau for data visualization and actionable insights.

• Agile Collaboration:
  • Work within an Agile environment, utilizing JIRA for sprint planning, task management, and collaboration with cross-functional teams.

• DevOps Process Design:
  • Design and implement DevOps processes that support Agile workflows while automating and streamlining infrastructure provisioning, application deployment, and monitoring.

Required Skills & Qualifications:

• • Experience: Overall 10+ years of experience in DevOps with 5+ years in an architectural role. Proven experience with Azure DevOps and Azure-based infrastructure.
  • Cloud Platforms: Extensive experience with Microsoft Azure services, including but not limited to Azure Kubernetes Service (AKS), Azure Functions, Azure Storage, and Azure Networking.
  • Azure DevOps: Strong hands-on experience in managing and building CI/CD pipelines in Azure DevOps, implementing version control, artifact management, and build/release processes.
  • Infrastructure as Code (IaC): Expertise in Terraform/ARM template for provisioning, configuring, and managing infrastructure in cloud environments.
  • Containerization & Orchestration: Expertise in Kubernetes, with experience deploying and managing containerized applications.
  • Automation & Scripting: Proficiency in scripting with PowerShell and Go, as well as automation tools to simplify deployment processes and systems management.
  • Systems Architecture: Solid understanding of system architecture principles, including high availability, scalability, and fault tolerance in cloud environments.
  • Collaboration: Excellent communication and teamwork skills, able to work effectively with developers, operations, and other stakeholders.
  • Problem Solving: Strong analytical and troubleshooting skills, able to resolve complex issues in a fast-paced environment.
  • Security Best Practices: Implement security best practices across all layers of infrastructure, including identity and access management (IAM), data encryption, network security, Vulnerability scanning, and secure coding practices. Leverage Azure Security Center, Azure Key Vault, and other tools for proactive security measures.
  • Security Practices: Deep knowledge of security best practices, including code security, infrastructure scanning, and pen testing. Experience in implementing security measures post-deployment.
  • Cloud Infrastructure & Migration: Hands-on experience with Azure cloud infrastructure and application migration, especially large-scale Microsoft-centric solutions.
  • Automation Tools: Expertise in automation tools such as Terraform, Ansible, and Docker/Kubernetes for infrastructure provisioning and application deployment.
  • Collaboration & Communication: Excellent communication and collaboration skills to work closely with development, QA, and security teams, ensuring that best practices are adhered to.
  • Good understanding in implementation of WAF solution and, authentication & authorization.  Knowledge of Okta & Cloudflare (WAF) is a must.

Preferred Qualifications:

• Bachelor's degree in computer science, Information Technology, or related field.
• Azure certifications (e.g., Azure DevOps Engineer Expert, Azure Solutions Architect).
• Knowledge of microservices architecture and managing related deployment pipelines.

 

About Swiss Re

 

Swiss Re is one of the world’s leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. We anticipate and manage a wide variety of risks, from natural catastrophes and climate change to cybercrime. We cover both Property & Casualty and Life & Health. Combining experience with creative thinking and cutting-edge expertise, we create new opportunities and solutions for our clients. This is possible thanks to the collaboration of more than 14,000 employees across the world.

Our success depends on our ability to build an inclusive culture encouraging fresh perspectives and innovative thinking. We embrace a workplace where everyone has equal opportunities to thrive and develop professionally regardless of their age, gender, race, ethnicity, gender identity and/or expression, sexual orientation, physical or mental ability, skillset, thought or other characteristics. In our inclusive and flexible environment everyone can bring their authentic selves to work and their passion for sustainability.

If you are an experienced professional returning to the workforce after a career break, we encourage you to apply for open positions that match your skills and experience.

 

 

Keywords:  
Reference Code: 133061