Description
About the project:
The Azure DevOps Engineering team, based within the CTO Function of Global Cloud Services, manage the engineering capability for the Microsoft Azure Platform. The team are responsible for building highly resilient, scalable, reusable and performant Azure cloud capabilities in an automated and efficient manner, delivering to the banks public cloud strategy.
Reporting to the Azure Engineering Lead, working across the Azure Cloud Services team, Microsoft and Cyber Security to ensure that we are delivering functional engineering capabilities that are secure-by-design and compliant in line with HSBC controls, policies and security standards.
As part of our workload automation strategy we are seeking to maximize our exploitation of Control-M and develop solutions that empower IT and Business teams to optimize their workflow and processes. In support of these aims we are looking to recruit a developer for solutions development of the Control-M platform, incorporating new functionality and integrations optimising the benefit of the wider platform to the company.
Recruitment process:
- Short call (with hireplace.it recruiter) [~15 min.]📞
- ZOOM general interview [+/-30 min.]💡
- ZOOM technical interview [+/- 1h] 🖥
- Decision 🤝
Responsibilities
- Deliver engineering capabilities to an Azure WAF (Web Application Firewall) uplift and enhancement programme.
- Build and manage the HSBC Azure platform to enable application deployments.
- Engineer solutions on Azure platform using Infrastructure-as-Code methods (e.g. Terraform)
- Execute the functional pattern lifecycle process (design, document, develop and maintain) code library.
- Integrate, configure, deploy and manage centrally provided common cloud services (e.g. IAM, networking, monitoring, Operating systems, Containers.).
- Manage Azure connectivity and networking e.g. Express Route, DNS, IP allocation and traffic routing, NSG’s and Azure Firewall.
- Ensure compliancy with Operational risk standards (E.g. Network, Firewall, OS, Logging, Monitoring, Availability, Resiliency).
- Build and support continuous integration (CI), continuous delivery (CD) and continuous testing activities.
- Engineering activities to implement patches provided centrally.
- Update support and operational documentation as required .
- Fault find and support Applications teams.
- Maintain and advance deep technical skills and knowledge, keeping up to date with market trends and competitive insights, and share within the technical community.
- Gather requirements and provide continuous feedback loops between Cyber security and the wider Azure Cloud Services team.
- Day to day troubleshooting and support of Azure tenant/infrastructure.
Requirements
- Strong and demonstratable experience of Azure WAF enablement engineering.
- Strong experience and understanding of cloud network security concepts and engineering.
- Experience of engineering and deploying IaaS and PaaS services in Azure.
- Expert understanding of DevOps principles and Infrastructure-as-Code concepts and techniques.
- Proficient understanding and implementation of CI/CD pipeline on Azure DevOps or GitHub.
- Understands security and compliance frameworks and controls, with experience and understanding of Microsoft Sentinel or Defender.
- Understands security and compliance frameworks and controls, with experience and understanding of Microsoft Sentinel or Defender.
- Operational effectiveness - delivers solutions that align to approved design patterns and security standards.
- Excellent skills in at least one of following: ARM, Powershell, Terraform and Ansible.
- Experience in dealing with multiple support groups that contribute to a service.
- A track record of constantly looking for ways to do things better and an excellent understanding of the mechanisms necessary to successfully implement change.
- Excellent written and spoken communication skills; an ability to communicate with impact, ensuring complex information is articulated in a meaningful way to wide and varied audiences.
- (essential skill) Technical knowledge and breadth of experience deploying Azure technology services. (Identity, Networking, Compute, Storage, Web, Containers, Databases).
- (essential skill) Strong and demonstratable experience of Azure WAF enablement engineering.
- (essential skill) Strong experience and understanding of cloud network security concepts and engineering.
- (essential skill) Experience implementing CI/CD pipeline on multiple technology stacks.
- (essential skill) Experience working with highly available/high-load web infrastructure e.g. web proxies, reverse proxies.
- (essential skill) Demonstrable risk management knowledge.
- (essential skill) Keen problem solving skills (Analytical and Creative).
- (desirable skills) Industry recognised cloud certifications, multi-cloud experience Azure + GCP/AWS.
- (desirable skills) Programming experience in the following languages: PowerShell, Terraform, Python Windows command prompt and object orientated programming languages.
- (desirable skills) Demonstrable experience of Linux administration and scripting preferably Red Hat.
- (desirable skills) Experience operating in highly regulated industry, e.g. Financial Services.
We offer
- Hybrid model (6 days/month in the office)
- Flexible working hours
- Contract via contracting company on indefinite period ♾️
- Attractive salary on B2B contract 💸
- IT contracting care
- One month notice period 🤝
- Private health care (LuxMed), employees’ benefits (Multisport) 🏥
- CSR initiatives
- Opportunity to work with and learn from professionals