DevSecOps Platform Engineer Atlassian Senior Lead

Summary

Join Devoteam Cyber Trust, a cybersecurity specialist arm of the Devoteam Group, as a DevSecOps Engineer specializing in on-premises OpenShift and Kubernetes environments, with a focus on managing and deploying Atlassian solutions. You will be responsible for designing, implementing, and maintaining infrastructure solutions, containerized solutions, and infrastructure as code, ensuring alignment with application requirements and cybersecurity best practices. You will also develop and optimize DevSecOps practices and tools, implement comprehensive logging, monitoring, and alerting solutions, and respond to incidents related to infrastructure, applications, and deployments. This role requires extensive experience in on-premises environments, containerization technologies, infrastructure automation, CI/CD pipelines, and Atlassian suite management. You will collaborate with infrastructure and development teams to integrate cybersecurity practices throughout the infrastructure and software development lifecycle, ensuring documentation and cybersecurity within the OpenShift and Kubernetes context.

Requirements

• Degree in Computer Engineering, Information Technology or a related field
• Proven experience (+5 years) as a DevSecOps Engineer or similar role, with significant experience in on-premises environments, and a strong focus on managing and deploying Atlassian solutions
• Strong understanding of DevOps, SecOps and GitOps principles and practices, with a focus in on-premises infrastructures, and their application to the Atlassian suite
• Extensive experience with on-premises infrastructure management, including Linux systems and provisioning through IaC, with specific experience in provisioning infrastructure for Atlassian applications
• Deep experience with containerisation technologies, specifically OpenShift, Docker, and Kubernetes, including the use of Kubernetes Operators, for deploying and managing Atlassian Data Center products
• Experience with OpenShift specific tools such as Harbor, ACS (Advanced Cluster cybersecurity), Argo CD (GitOps), and ACM (Advanced Cluster Management), in the context of deploying and managing Atlassian on OpenShift
• Proven experience with IaC tools such as Terraform / Terragrunt and Ansible for infrastructure automation, with a focus on on-premises infrastructures, including the automation of Atlassian application deployments and configurations
• Proven experience implementing and managing CI/CD pipelines with Jenkins / CloudBees, Azure DevOps for containerised applications on OpenShift and Kubernetes, and specifically for deploying and configuring Atlassian applications (Jira, Confluence, Bitbucket)
• Experience with artefact repositories such as Artifactory and XRay from JFrog, and Nexus from Sonatype, for managing Atlassian application artefacts and plugins
• Experience with additional HashiCorp tools such as Vault, Consul, Nomad and Packer, in the context of securing and managing Atlassian deployments
• Experience with testing automation frameworks, code analysis and cybersecurity scanning tools such as SonarQube, and their integration with Atlassian tools for code quality and security within Bitbucket
• Hands-on experience with infrastructure logging, monitoring, and alerting tools relevant to OpenShift and Kubernetes such as Prometheus, Grafana, Loki and Alertmanager, and their application to monitoring the health and performance of Atlassian applications
• Proficient in scripting languages such as Python and Bash, for automating tasks related to Atlassian management and deployment
• Familiarity with Scrum or Agile methodologies, and experience using Jira and Confluence for agile project management
• Extensive experience architecting, managing, and monitoring the Atlassian suite of tools (Jira, Confluence, Bitbucket), including user and permission management (IAM)
• Proven experience creating CI/CD pipelines to build and deploy the Atlassian suite across multiple environments
• Strong understanding of Atlassian Data Center architecture and best practices for high availability and scalability
• Experience working in GxP regulated environments and understanding GxP requirements, and applying these to the management and configuration of Atlassian tools for compliance
• Excellent organisational, analytical, and problem-solving skills, with a focus on optimising the performance and stability of the Atlassian suite
• Strong sense of ethics, integrity, and responsibility, particularly in regulated environments, especially regarding user access and data security within Atlassian tools
• Excellent communication and teamwork skills, including the ability to collaborate effectively with development and infrastructure teams, and to provide guidance and support for Atlassian users
• Fluency in Portuguese and a moderate to high level of proficiency in English

Responsibilities

• Design and implement infrastructure solutions, ensuring alignment with application requirements and cybersecurity best practices, with a focus on on-premises infrastructures, including the infrastructure required to support the Atlassian suite
• Design, implement, and maintain containerised solutions on OpenShift, Docker and Kubernetes, including the use of Kubernetes Operators, with a focus on on-premises infrastructures, for hosting and scaling Atlassian applications
• Design, develop, and maintain infrastructure as code (IaC), with a focus on on-premises infrastructures, primarily using Terraform / Terragrunt and Ansible, to manage infrastructure with a strong focus on OpenShift and Kubernetes environments, and the deployment of Atlassian tools
• Develop, implement, and maintain CI/CD pipelines specifically tailored for on-premises OpenShift and Kubernetes deployments, automating build, test, and deployment processes, with a focus on Jenkins and integrating with artefact repositories such as Artifactory, JFrog Xray, and Nexus, and including pipelines for Atlassian application deployments and configurations
• Collaborate with infrastructure and development teams to integrate cybersecurity practices (SecOps) throughout the infrastructure and software development lifecycle, ensuring documentation and cybersecurity within the OpenShift and Kubernetes context, and specifically for the Atlassian suite, including user access management and security configurations
• Develop and optimise DevSecOps practices and tools on the environments, contributing to continuous improvement by leveraging testing automation frameworks, code analysis tools such as SonarQube, and other cybersecurity scanning tools, and including the configuration and management of security controls within Jira, Confluence, and Bitbucket
• Implement and manage comprehensive logging, monitoring, and alerting solutions, such as Prometheus, Grafana, Loki, and Alertmanager to ensure system operation, performance, and proactive incident detection within the OpenShift and Kubernetes ecosystem, and specifically for the Atlassian application performance and health
• Respond quickly and effectively to incidents related to infrastructure, applications, and deployments, with a specific focus on OpenShift and Kubernetes on-premises environments, and including incidents related to the Atlassian suite
• Document processes, including installation protocols, technical specifications (BSDS), and GxP relevant documentation, to ensure knowledge management and compliance, with specific documentation for the Atlassian environment, including configurations, integrations, and security settings
• Keep up to date with the latest technologies and trends in DevSecOps, with a strong emphasis on on-premises OpenShift and Kubernetes, and including advancements and best practices for managing and securing Atlassian solutions

Preferred Qualifications

• Relevant certifications, such as ITIL v4 Foundation or higher, are highly valued
• Relevant OpenShift/Kubernetes certifications, such as CKA, CKS, Red Hat Certified Specialist in OpenShift, are highly valued
• Proficiency in information cybersecurity principles, cybersecurity best practices, and frameworks such as ISO 27001, NIST Cybersecurity Framework and CIS Top Critical cybersecurity Controls, with specific knowledge of securing Atlassian applications
• Knowledge of Javascript frameworks, particularly in the context of developing Atlassian plugins or integrations
• Knowledge of Artificial Intelligence and Machine Learning concepts, and their application in DevSecOps within on-premises environments, including infrastructure, CI/CD, cybersecurity, and code analysis, potentially for automating Atlassian administration or providing intelligent insights from Atlassian data

Benefits

• Professional development and monitoring talent
• Commitment to our employees' development
• Collaboration in a company that is constantly growing and evolving
• Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego