Overview
As a DevOps Engineer in the IP Development team, youâll enable fast, reliable delivery across multiple products by building and operating our Azure-based platform and CI/CD toolchain. Youâll collaborate across engineering, product and quality functions to automate the path from commit to production, embed observability and security, and provide self-service infrastructure for containers, serverless, AI/analytics and data services.
Role Responsibilities
Own CI/CD pipelines (GitHub Actions/Azure DevOps): build, test (incl. security scans), release, blue/green/canary and rollback.
Build and manage Infrastructure as Code (Terraform/Bicep) for AKS/ACR, App Service/Functions, VNets, APIM/Front Door, Key Vault, data and messaging.
Embed observability (logs/metrics/traces, SLOs/error budgets), keep alerting actionable, maintain runbooks and dashboards.
Champion security-by-default: IAM/RBAC, secrets management, policy-as-code, dependency and image scanning, cert/PKI hygiene.
Maintain environment parity (DEV/TEST/STAGING/PROD), config/feature flags, and safe DB migration practices.
Drive performance and cost efficiency: capacity planning, k6/perf testing, caching, and FinOps tagging/monitoring.
Partner with Scrum Masters, BAs and QA on flow, release readiness and quality gates; support incidents and post-mortems.
Create âgolden pathsâ (templates, scripts, docs) that improve developer experience and self-service.
Experience required
Strong Azure: AKS, ACR, App Service/Functions, VNets/peering/NSGs, APIM/Front Door, Storage, Key Vault, Monitor/Log Analytics; AWS exposure desirable.
Containers application experience beneficial; understanding of Docker, HPA, PDBs and rollout strategies.
IaC: Terraform and/or Bicep (modules, plans, policy checks); pipeline-driven validate/plan/apply.
CI/CD: GitHub Actions/Azure DevOps, artefact registries, versioning strategies, integrating unit/integration/E2E and SAST/DAST.
Observability: Azure Monitor/App Insights, OpenTelemetry; designing actionable alerts and SLOs.
Security: least privilege, RBAC, OIDC to cloud, Key Vault, vulnerability management (e.g. Dependabot), policy-as-code (Azure Policy/OPA).
Networking fundamentals: DNS, TLS, HTTP, private endpoints, load balancers, WAF.
Data \& messaging: Azure SQL/Cosmos/Postgres, Redis, Service Bus/Event Hubs (Kafka nice to have).
Scripting \& automation: Bash/PowerShell/Python; YAML/JSON; solid Linux fundamentals.
Ways of working: collaborative, clear documentation, agile delivery; on-call/incident experience; relevant certs (AZ-104/AZ-400/CKA) a bonus.
Protecting your privacy and the security of your data is a longstanding top priority for Bell Integration. Please consult our Privacy Notice (click here) to know more about how we collect, use and transfer the personal data of our candidates.