afarax is looking for a freelance Senior SDLC DevSecOps Architect. We need you!
Our client in the financial sector, is seeking an experienced SDLC DevSecOps Architect to strengthen their team.
The objectives are to:
- Maintain control and sovereignty over its tooling (on premises / self-hosted)
- Reduce vendor lock in
- Strengthen security integration across the development lifecycle
- Align the practices with a DevSecOps model
The mission combines audit, strategic definition, tooling evaluation and implementation guidance, with a strong focus on on-premises infrastructure and Microsoft (.NET) environments, resulting in the establishment of a migration plan and the implementation support.
Tasks & responsibilities
Current state assessment:
- Review the documentation of the existing DevOps ecosystem
- Highlight risks related to:
- Security
- Scalability
- Vendor dependency
DevSecOps strategy definition:
- Assist the DevSecOps Engineering with designing a target DevSecOps architecture (self hosted / on-premises)
- Ensure compatibility with:
- Microsoft Stack (.NET, potential Azure DevOps integrations)
- Existing infrastructure constraints
Tooling evaluation & recommendations:
- Review and possibly extend the list of identified alternative solutions and products to the Atlassian ecosystem
- Identity the issue pertaining to the migration from the Atlassian products to the selected alternatives and propose solutions
Transition roadmap:
- Design a new DevSecOps architecture
- Define a progressive migration strategy away from the current one
- Assess impacts on:
- End-users
- Development teams
- Security processes
- Operations
- Assist with the review of the procedures impacted by the replacement of the Atlassian products
- Draft a migration plan, including a communication plan
Implementation support (optional but expected):
- Support proof of concept deployments
- Assist in initial pipeline implementation
- Provide documentation and knowledge transfer
Is this you?
- Strong experience in the Software Development Life Cycle (SDLC) and DevSecOps architecture
- Hands on experience with self hosted DevOps platforms
- Experience with ITSM, ticketing, Wiki, GIT service, CI/CD pipeline design and automation and Asset Management (CMDB) tools
- Experience with the migration from Atlassian tools to alternative tools deployed on premises
- Experience with application security (SAST, DAST, SCA, secrets management) and package management tools
Soft skills:
- Ideally FR/NL. If not, fluent in FR or NL with a very good knowledge of the other language
- Ability to conduct audits and deliver actionable insights
- Pragmatic mindset focused on business value
- Experience in Change Management, involving development teams and end-users
How afarax supports you?
- You benefit from our extensive network
- You will have access to projects that fit your expertise
- We help and support you throughout your project
- We offer the possibility to build a valuable and lasting partnership
