Ing nieur DevOps

Core Responsibilities:

1. Security Integration in CI/CD Pipelines:

Implement security measures and best practices throughout the CI/CD lifecycle.

ALM CI/CD GITLAB Customer pipeline ; seamless integration with Alstom ecosystems (Azure) vault

2. Infrastructure as Code (IaC) Management:

Terraform Expertise:

Design and deploy cloud infrastructure in Azure using Terraform.

Ensure that IaC templates are secure by default following security guidelines ; Terraform development over module structure (core module local input & outputs variables )

Regularly review and audit Terraform scripts to identify misconfigurations or vulnerabilities in cloud resources.

3. Azure Cloud Security:

Utilize Azurenative security tools like Azure Security Center Azure Policy to monitor and enforce security policies.

Apply Azure RoleBased Access Control (RBAC) Azure Key Vault for secrets management and implement network security groups (NSGs) and firewalls for secure communication.

Leverage encryption (at rest and in transit) and secure access mechanisms (e.g. multifactor authentication identity management with Azure Active Directory).

4. Threat Detection and Response:

Implement logging monitoring and alerting mechanisms using Azure Monitor Azure Sentinel and Log Analytics to identify security incidents.

Automate incident response using playbooks in Azure Logic Apps.

5. Compliance and Governance:

Enforce compliance frameworks (e.g. CIS benchmarks GDPR HIPAA) using Azure Policy to ensure cloud infrastructure meets organizational and regulatory standards.

Use Terraform to codify compliance policies and automate the application of security controls across environments.

6. Automation & Configuration Management:

Automate tasks using Terraform modules reusable templates and scripts for scalable and secure cloud deployments.

7. Collaboration & Knowledge Sharing:

Work closely with development operations and security teams to promote a securityfirst mindset.

Provide training and create documentation on secure cloud and DevOps practices ; Digital Factory Services framework

Required Skills:

Terraform: Deep expertise in Terraform scripting resource management and state handling.

Azure Cloud: Strong understanding of Azure architecture and Azure PaaS services security best practices Azure DevOps and Azurenative security tools.

Security Tools: Experience with security scanning tools vulnerability management and threat modeling.

Automation: Proficiency in scripting languages (Python PowerShell Bash) to automate security tasks or blueprints development (CloudBolt)

CI/CD Tools: Familiarity with DevOps GitLab environment or other CI/CD tools for secure software delivery.

Compliance: Knowledge of regulatory standards and frameworks like NIST ISO 27001 and how to apply them in a cloud environment

Profil

S niorit : 7 ans et plus

Localisation: Casablanca/Rabat

Type de contrat: Freelance