Azure DevOps (m/f/d) focus YAML | IaC

Leistungsbeschreibung

Design, align, and build an enterprise-ready Azure DevOps (ADO) platform for large customers, with strong focus on multi-tenancy, security-by-design, and automation. Define and execute migration approaches and validate the platform through pilot implementations with initial customers/teams, ensuring scalable adoption of SDLC security controls (SAST, SCA, secret scanning, DAST) within standardized CI/CD patterns.

Anforderungen

Architecture & Stakeholder Alignment

• Gather and translate enterprise requirements into a target architecture (platform, governance, security, compliance)
• Define ADO organization/project structure, operating model, and guardrails for large-scale usage
• Align with stakeholders (engineering, security, compliance, infra) on standards, control objectives, and rollout strategy

Platform Build (Design-to-Implementation)

• Build ADO environments and foundational capabilities: repo structures, pipelines, agent strategy, artifacts, permissions, and templates
• Implement multi-tenant design (isolation boundaries, shared services, RBAC, audit separation)
• Create reusable CI/CD blueprints (YAML templates, golden pipelines, standardized onboarding packages)

Security-by-Design

• Embed enterprise security requirements into CI/CD design through standard controls and policy gates:
  • SAST, SCA, secret scanning, DAST
• Define enforcement models (warning/blocking), exception handling, and evidence/audit traceability
• Ensure secure connectivity patterns (identity, service connections, least privilege, credential handling)

Automation & Migration Approach

• Develop automation for provisioning and onboarding (projects, repos, pipelines, permissions, service connections)
• Define migration approaches and playbooks (assessment → pilot → phased rollout → cutover), including coexistence strategies
• Execute pilot migrations and end-to-end tests with first customers/teams, then refine patterns for scale

We require a senior hands-on specialist who has designed and built enterprise DevOps platforms—not just configured single-team setups. The role demands strong architectural ability, stakeholder management, secure-by-design thinking, and proven experience delivering multi-tenant ADO environments, including migration strategy and automation, validated through pilots and early adopters.

• Azure DevOps (ADO) – Expert-level knowledge of pipelines (YAML), repos, artifacts, agent pools, permissions, and enterprise governance design
• Enterprise Platform Architecture – Proven experience designing and building environments for large enterprise customers
• Multi-tenancy – Strong understanding of isolation models, RBAC boundaries, shared services, and audit requirements
• Security & Compliance by Design – Ability to translate enterprise security requirements into platform guardrails and CI/CD governance
• SDLC Security Understanding – Strong knowledge of integrating SAST, SCA, secret scanning, and DAST into CI/CD patterns and policy gates
• Automation / IaC Mindset – Strong capability to automate provisioning, onboarding, and standardization (templates, scripts, IaC)
• Migration Approaches – Experience defining and executing phased migration strategies with pilots, coexistence, and rollback planning
• Documentation & Enablement – Produce clear architecture docs, onboarding guides, and reference implementations for teams

Über den Auftraggeber

Start: 15.04.2026

Ende: 30.09.2026; + Option auf Verlängerung

Auslastung: ca. 100%

Onsite Stunden: 0

Offsite Stunden: 880

Vertragsart: Contracting | ausschließlich Near- bzw. Offshore Ressourcen zulässig

Standort: Remote