DevSecOps Engineer

DevSecOps Engineer

Initial 6 months daily rate contract

North Dublin - Hybrid (3 days per week onsite)

High level service deliverables

CI/CD, Automation & Tooling

• Design and manage CI/CD pipelines using GitHub Actions to automate build, test, and deployment processes in line with CoE standards.
• Integrate and maintain artefact repositories using JFrog Artifactory for secure storage and distribution of build assets.
• Implement automated security scanning using Snyk and SonarQube to ensure code quality, compliance, and vulnerability management.
• Use Terraform for Infrastructure as Code to provision, configure, and manage cloud resources with version control and automated workflows.

DevSecOps

• Proactively identify, assess, and remediate vulnerabilities using automated security testing and code analysis solutions such as Snyk and SonarQube, alongside effective dependency and artefact management with JFrog.
• Monitor alerts and review security reports to rapidly detect, investigate, and respond to security threats and incidents, ensuring continuous protection of applications and infrastructure.
• Collaborate closely with development and security teams to ensure solutions meet security standards and regulatory obligations.

Monitoring, Reliability Operations

• Monitor, troubleshoot, and optimise systems to maintain high performance, reliability, and security across environments.
• Implement observability practices using tools such as Azure App Insights, DataDog, Prometheus, and Grafana.

Collaboration, Governance & Documentation

• Collaborate with development teams using Jira boards and workflows to support transparent, efficient project delivery.
• Advocate and enforce DevSecOps best practices across the development lifecycle.
• Contribute to CoE playbooks: helping define reusable patterns, templates, and best practices.

Core Technical Skills

• Microsoft Azure expertise in enterprise environments.
• Advanced Terraform proficiency for automated provisioning and lifecycle management of infrastructure.
• Handson experience with Docker for containerisation, image management, and deployment within enterprise environments.
• CI/CD automation experience with GitHub Actions, including pipeline design, integration, and optimisation.
• JFrog Artifactory knowledge for artefact management and secure distribution.
• Security tooling experience with Snyk and SonarQube for vulnerability scanning and code quality assurance.
• Containerisation and orchestration skills with Kubernetes and Azure Container Apps.
• Monitoring and logging capabilities using DataDog Azure Monitor, Prometheus, Grafana, or similar platforms.
• Scripting and automation proficiency in Bash, PowerShell, or Python.
• Experience with OpenShift Container Platform is a plus