V-IT is looking for an Azure DevOps Engineer for a client in Brussels.

Periode: 01/10/2024 - 27/12/2024
Locatie: Brussel

Migrate the Security Operation Centre applications from the on-premise dedicated SOC infrastructure to the Azure tenant.
During the mission, the person will be working closely with the SOC engineers and a Security architect to design and deploy the needed Azure infrastructure via the Infrastructure as Code process based on Terraform and GitLab.
 
The mission can be completed with up to 50% of the work done remotely, with a preference for on-site work on Fridays.
 
This is a list of the different tasks that the Azure DevOps engineer will take part in:
 
1. Designing Azure Solutions

1. Assess Requirements: Work with stakeholders to understand business and technical requirements.
2. Solution Architecture: Design scalable, secure, and cost-effective cloud solutions using Azure services.
3. Infrastructure Design: Develop architecture for cloud networks, storage solutions, and computing environments.

2. Implementation & Deployment

1. Set Up Cloud Infrastructure: Request Virtual Machines (VMs), storage, and networking.
2. Migrate Workloads: Plan and execute migration of on-premises infrastructure to Azure.
3. Automate Deployments: Use Infrastructure as Code (IaC) tools (Terraform).
4. Implement CI/CD Pipelines: Set up continuous integration and continuous delivery pipelines using GitLab.

3. Monitoring & Management

1. Monitoring & Alerting: Set up monitoring, logging, and alerting through Azure Monitor, Azure Log Analytics.
2. Backup & Disaster Recovery: Request to implement an Azure Backup strategy to backup the SOC infrastructure. Check with the infrastructure team how Azure Site Recovery can help for business continuity.
3. Security Management: Use the internal process to request to configure and manage security features like Azure Active Directory, role-based access control (RBAC), and network security groups (NSGs).

4. Cost Management & Optimization

1. Cost Optimization: Monitor Azure costs and make recommendations for reducing expenses by using reserved instances, spot VMs, or optimizing workloads.
2. Resource Tagging: Use the resource tagging policies to track resource usage by SOC applications.

5. Security and Compliance

1. Identity & Access Management: Request via internal processes the creation of users, groups, and permissions through Azure Active Directory (AD) and Azure RBAC.
2. Network Security: Set up, in collaboration with the Network team, secure virtual networks, subnets, firewalls, and VPNs.
3. Compliance: Ensure that the Azure infrastructure complies with industry-specific regulations (e.g., GDPR, HIPAA).

6. Performance Optimization

1. Load Balancing: Colaborate to implement load balancing, and traffic management solutions for high availability and fault tolerance.
2. Performance Tuning: Optimize Azure services (e.g., VMs, databases) for better performance.

7. Troubleshooting & Support

1. Issue Resolution: Diagnose and resolve technical issues, whether in networking, compute, storage, or identity.
2. Customer Support: Provide support to development teams and clients to resolve SOC Azure-related issues.
3. Incident Response: Respond to security or performance incidents by identifying root causes and implementing solutions.

8. Documentation & Knowledge Sharing

1. Technical Documentation: Create and maintain comprehensive documentation for the Azure infrastructure and services.
2. Training & Support: Provide training to internal teams and assist with onboarding to Azure services.

9. Upgrading & Patching

1. Patch Management: Collaborate with the patching team to apply necessary updates and security patches to Azure resources.
2. Upgrade Services: Monitor Azure services and ensure they are using the latest versions to avoid deprecation.

10. Research and Innovation

1. Stay Updated: Keep up with the latest Azure services and updates to leverage new features and optimize solutions.

Propose Enhancements: Continuously explore ways to improve infrastructure, workflows, and security practices using new Azure features.