Define target-state DevSecOps architecture and golden path standards across Azure DevOps Server, security controls, GitOps deployments, test gates, and monitoring, ensuring scalable and auditable delivery.
· Produce reference architecture: CI/CD, artifact lifecycle, environment strategy, approvals, and auditability.
· Design, deploy, and maintain secure, high-availability Kubernetes clusters (K8s) across private cloud environments.
· Define pipeline patterns with Fortify gates, SBOM/SCA expectations, and Sigstore signing/verification.
· Define IaC standards using Terraform and configuration standards via Ansible.
· Design GitOps model using Argo CD into OpenShift/Kubernetes, including multi-environment promotion.
· Define monitoring architecture and operational readiness aligned with AppDynamics/BMC/Azure Monitoring.
· Lead adoption waves and deprecate non-compliant delivery paths.
Collaborate with security and testing teams to foster a DevOps culture, providing technical mentorship to engineers and smooth integrations with other parties
Requirements
10–15+ years overall; 5+ years in platform/DevSecOps architecture. Government/regulatory sector experience is a plus.
Enterprise DevSecOps platform design, secure supply chain, policy-as-code concepts, and strong K8s/OpenShift architecture knowledge.
Strategic thinking, stakeholder alignment, pragmatic trade-offs, adoption leadership, and strong documentation.
Azure DevOps Server, JFrog Artifactory, Fortify, HashiCorp Vault, Terraform, Ansible, OpenShift/Kubernetes, Argo CD, Sigstore, OpenText Service Virtualization, UFT One, UFT Digital Lab, LoadRunner, and monitoring (AppDynamics/BMC/Azure Monitoring).