DevOps Engineer

Overview

As a DevOps Engineer in the IP Development team, you’ll enable fast, reliable delivery across multiple products by building and operating our Azure-based platform and CI/CD toolchain. You’ll collaborate across engineering, product and quality functions to automate the path from commit to production, embed observability and security, and provide self-service infrastructure for containers, serverless, AI/analytics and data services.

Responsibilities

• Own CI/CD pipelines (GitHub Actions/Azure DevOps): build, test (incl. security scans), release, blue/green/canary and rollback.
• Build and manage Infrastructure as Code (Terraform/Bicep) for AKS/ACR, App Service/Functions, VNets, APIM/Front Door, Key Vault, data and messaging.
• Embed observability (logs/metrics/traces, SLOs/error budgets), keep alerting actionable, maintain runbooks and dashboards.
• Champion security-by-default: IAM/RBAC, secrets management, policy-as-code, dependency and image scanning, cert/PKI hygiene.
• Maintain environment parity (DEV/TEST/STAGING/PROD), config/feature flags, and safe DB migration practices.
• Drive performance and cost efficiency: capacity planning, k6/perf testing, caching, and FinOps tagging/monitoring.
• Partner with Scrum Masters, BAs and QA on flow, release readiness and quality gates; support incidents and post-mortems.
• Create “golden paths” (templates, scripts, docs) that improve developer experience and self-service.

Role Requirements

• Strong Azure: AKS, ACR, App Service/Functions, VNets/peering/NSGs, APIM/Front Door, Storage, Key Vault, Monitor/Log Analytics; AWS exposure desirable.
• Containers application experience beneficial; understanding of Docker, HPA, PDBs and rollout strategies.
• IaC: Terraform and/or Bicep (modules, plans, policy checks); pipeline-driven validate/plan/apply.
• CI/CD: GitHub Actions/Azure DevOps, artefact registries, versioning strategies, integrating unit/integration/E2E and SAST/DAST.
• Observability: Azure Monitor/App Insights, OpenTelemetry; designing actionable alerts and SLOs.
• Security: least privilege, RBAC, OIDC to cloud, Key Vault, vulnerability management (e.g. Dependabot), policy-as-code (Azure Policy/OPA).
• Networking fundamentals: DNS, TLS, private endpoints, load balancers, WAF.
• Data & messaging: Azure SQL/Cosmos/Postgres, Redis, Service Bus/Event Hubs (Kafka nice to have).
• Scripting & automation: Bash/PowerShell/Python; YAML/JSON; solid Linux fundamentals.
• Ways of working: collaborative, clear documentation, agile delivery; on-call/incident experience; relevant certs (AZ-104/AZ-400/CKA) a bonus.

Protecting your privacy and the security of your data is a longstanding top priority for Bell Integration. Please consult our Privacy Notice ( click here ) to know more about how we collect, use and transfer the personal data of our candidates.