* Applies deep technical expertise in infrastructure automation, environment provisioning, and deployment pipelines supporting the EDP platform and its AI/ML workloads.
* Designs, maintains, and supports the CI/CD pipelines using GitLab CI, enabling frequent, reliable deployments to Azure Kubernetes Service (AKS).
* Manages containerisation using Docker, builds and publishes container images to registries, and ensures secure and efficient AKS cluster deployments.
* Implements infrastructure as code using Terraform, including network, security, and compute resources.
* Supports Airflow as part of platform orchestration.
* Collaborates closely with Data Engineers, MLOps Engineers, and Solution Architects to ensure the infrastructure and pipelines meet performance, scalability, and compliance requirements.
* Follows best practices for platform security, auditing, and cost management, aligning with enterprise Landing Zone (LZ) policies.
Duties
* Design and implement GitLab-based CI/CD pipelines for deploying containerised services to AKS.
* Build and maintain Dockerfiles and container image workflows, pushing to internal container registries.
* Define and manage AKS cluster configurations, ensuring secure and scalable workloads.
* Write and maintain Terraform modules for provisioning cloud infrastructure in line with Azure Landing Zone standards.
* Manage secrets, configuration, and access using Azure Key Vault and Azure AD.
* Ensure connectivity between on-prem services and Azure cloud infrastructure using GreenLink and hybrid networking.
* Collaborate with MLOps and Data Engineers to ensure reproducible, reliable, and auditable infrastructure across environments.
* Monitor system health, logging, and metrics using platform observability tools (e.g. Azure Monitor, Prometheus, Grafana where applicable).
Knowledge
* Azure Landing Zone principles, vNet design, RBAC, networking, and hybrid connectivity.
* CI/CD tooling, especially GitLab CI/CD.
* Container orchestration (AKS) and Docker best practices.
* Infrastructure as code (Terraform or Bicep).
* Networking principles, including hub/spoke topology and private endpoints.
Skills
* Writing and debugging CI/CD pipelines.
* Building container images using Docker.
* Managing infrastructure lifecycle in Azure using IaC.
* Collaborating across technical and non-technical teams.
* Understanding and applying secure coding and deployment principles.
* Troubleshooting system and deployment issues at infrastructure level
Qualifications
#J-18808-Ljbffr