|
JD
Role Summary
Lead the design and governance of CI/CD, DevSecOps, and platform automation for aviation products (e.g., Crew & Ops modules). Own the end‑to‑end software delivery model across GitHub / GitHub Actions, Azure DevOps, and Jira/Confluence, ensuring repeatable, compliant, and observable pipelines from code to production in multi‑cloud (Azure/AWS) environments.
Key Responsibilities
- DevOps Architecture & Standards
- Define the target CI/CD reference architecture and pipeline standards for aviation services (microservices, APIs, UIs) across GitHub Actions and Azure DevOps
- Establish branching, tagging, release, and environment‑promotion models (dev→QA→UAT→prod) with automated gates and approvals aligned to aviation compliance.
- Toolchain Ownership (GitHub / ADO / Jira)
- Design and run reusable pipeline templates, actions, and stages for build, test, scan, package, deploy, and rollback.
- Configure Jira projects/workflows, issue types, automations, and dashboards for end‑to‑end SDLC visibility; drive tight integration between Jira, GitHub/ADO, and documentation (Confluence).
- Security & Compliance (DevSecOps)
- Embed SAST/DAST/Dependency scanning, SBOM generation, secrets management, and policy‑as‑code in pipelines; enforce change evidence and audit logs required for regulated aviation environments.
- Ensure deployments meet FAA/EASA‑aligned safety and data governance standards with traceable approvals and incident procedures
- Environment Automation & Cloud Delivery
- Build infrastructure pipelines (IaC: ARM/Bicep/Terraform) and application release orchestration to Azure and AWS; standardize container delivery to Kubernetes with Helm.
- Define observability patterns (Prometheus, Grafana, logs/traces) and wire alerts to incident processes; rationalize gaps between monitoring and ITSM
- Quality, Reliability & Cost
- Engineer resilient deployment strategies (blue/green, canary, progressive) and codify rollback/runbooks.
- Drive build minutes, runner pools/agents, artifact storage, licenses, and cloud spend optimization across toolchains. (GitHub/ADO projects and org settings).
- Ways of Working & Enablement
- Lead backlog‑to‑release ceremonies and SDLC governance; coach teams on pipeline hygiene, t est Automation Architect - K6, Playwright, and trunk‑based flow.
- Produce playbooks, wikis, and golden paths; run migration programs to standard pipelines.
Skills Required
Core DevOps & CI/CD
- GitHub / GitHub Actions: reusable workflows, composite actions, environments, approvals, OIDC‑based cloud deploys; artifact/versioning strategies.
- Azure DevOps: pipelines (YAML), environments, gated releases, templates, variable groups/Key Vault integration.
- Jira (Atlassian): project/workflow design, automation rules, custom fields, reports/dashboards; integration with Git providers and CI/CD status checks.
DevSecOps & Compliance
- SAST/DAST, dependency/vulnerability management, SBOM; secrets rotation and least‑privilege runners/agents. [
- Evidence capture, approvals, and auditability aligned with aviation safety/regulatory expectations.
Cloud & Release Engineering
- Azure/AWS delivery patterns; IaC with Terraform/ARM/Bicep; package/promote with artifacts feeds, Helm/Kubernetes.
- Observability: Prometheus/Grafana/logs; alert routing into incident processes and runbooks.
SDLC & Collaboration
- Agile/SAFe delivery, backlog management, definition‑of‑done/release; Confluence knowledge base stewardship
- Strong stakeholder communication; ability to lead cross‑functional squads (dev, QA, SRE, security, infra).
Experience & Qualifications
- 8–12+ years in DevOps/Platform Engineering with 3–5+ years architecting enterprise CI/CD at scale (multi‑repo, multi‑service).
- Aviation or other regulated industry experience (safety, traceability, approvals) preferred.
- Certifications desired: Azure DevOps Engineer Expert, AZ‑305/AZ‑104, or equivalent; Atlassian Jira administration; SAFe/Agile credentials
|
