Senior DevOps Engineer - Hatfield - £549 per day Umbrella

We are recruiting for a highly experienced Senior SRE/DevOps Engineer for a leading IT Service provider based in Hatfield. You will build, operate, and industrialise modern cloud native platforms across public and private cloud environments. You will play a key role in designing and operating secure, reliable, and fully automated platform services that support our customers' digital transformation strategies.

Main Responsibilities

Platform Engineering & Operations

- Build, run, and continuously improve lab and production platforms across GCP (GKE/GKE On Prem/GDC) and VMware Cloud Foundation (VCF).

- Operate Kubernetes clusters at scale, including cluster life cycle, upgrades, Day 0/1/2 automation, drift remediation, and reliability engineering.

- Implement GitOps first operations using ArgoCD.

- Enforce platform policies, configuration baselines, and compliance evidence collection.

Automation & Infrastructure as Code

- Engineer consistent public/private cloud infrastructure using Terraform Enterprise, Ansible Automation Platform, and Metalsoft.

- Develop and maintain multi stage CI/CD pipelines using GitHub Actions and TFE.

- Industrialise reusable Golden Path modules and templated stacks.

Security, Zero Trust & Secrets Management

- Embed zero trust principles (MFA, IP allow listing, IAP, HA VPN) into pipelines and runtime.

- Implement enterprise-grade secrets life cycle management using Akeyless.

- Integrate compliance controls, CI policy gates, and audit trails supporting DORA.

- Customer Delivery & Technical Leadership

- Lead customers through platform modernisation and DevOps transformation.

- Produce automation frameworks, reference architectures, and runbooks.

- Participate in customer workshops and ensure successful handover to support teams.

Required Skills & Experience

Expert Level:

- CI/CD & IaC automation (GitHub Actions, Terraform Enterprise, Ansible Automation Platform)

- Cluster life cycle management & GitOps operations

- TFE workspace/module design across VCF & GCP

- Secrets life cycle & vault patterns (Akeyless)

- Multi stage app + infra pipelines

- Reusable modules & Golden Path stacks

Practitioner Level:

- Kubernetes operations, patch automation, drift remediation

- Secret rotation automation and compliance evidence

- Metalsoft automation for bare metal IaC

- Network/perimeter controls incl. IAP, HA VPN, MFA, IP allow listing

- Policy checks, CI gating, and AAP-based patching/hardening

- Cost aware provisioning