Search for anything...
£40K/yr to £50K/yr
England, United Kingdom
Permanent, Variable

DevOps Engineer

Posted by Reed.

DevOps Consultant

Barrow/Remote

£50K + Benefits

A DevOps Consultant is required for our client who are based in Barrow. You will join the Software Development & Server Management Team and will report directly to the Head of IT. This role is integral in the deployment, maintenance and security of a large estate of cloud based servers hosting bespoke in-house built cloud software, across multiple datacentres. You will be hands on with practical experience. The majority of this estate runs Linux so ideal candidates would have experience of this. You will be heavily integrated with the Full Stack Developers in the team and you will also be involved in the deployment of new cloud servers, the configuration maintenance and hardening/securing of each server.

Responsibilities:

  • Server Management, Maintenance, Upgrades & Compliance

  • Responsible for the entire server lifecycle, from server deployment to maintaining, upgrading, and ensuring compliance of every server in the estate.

  • Resource increases when necessary for scalability – RAM, Disk Size, CPU etc.

  • MySQL Database management, maintenance and compliance.

  • MySQL Replication maintenance and management (Master – Master & Master- Slave relationships).

  • Linux Operating System distribution migration (moving servers to a new Linux distribution where required).

  • Updating server software repositories via DNF.

  • NFS mounting and management in a secure environment

  • Implementing and maintaining TDE/At Rest Encryption (or similar).

  • Server Account Management.

  • WHM/CPanel Configuration and Management.

  • Backup configuration and restoration testing.

  • Linux & Windows Server Daily Business Continuity Checks

  • To ascertain and document server health via daily check processes – which are to be refined.

  • To resolve availability, integrity or security issues as they arise.

  • Able to communicate risk in a measured, calculable way in line with ISO27001 methodologies.

  • Information Security Engineering

  • You will be responsible for improving and maintaining the security baselines across the company, from conceptualisation to implementation and daily maintenance, this security responsibility includes the responsibility of the servers as well as the bespoke built applications and code.

  • Server Environment Hardening

  • ModSec Firewall Configuration

  • Securing Network Environments

  • Firewall Configuration (Server and Network Level)

  • PKI Management

  • Intrusion Detection and Prevention

  • TLS, HSTS & CSP Configuration Management

  • Risk Management and Treatment

  • Vulnerability Management and Triage

  • Routine internal system audits

  • Establishing InfoSec baselines within the company

  • Configuring and managing Cloudflare as a reverse proxy and Web Application Firewall

  • WAF Event risk management and triage

  • Zero Trust configuration and management

  • Security best practices and experience conforming to standards such as:

  • ISO27001:2022 Framework

  • OWASP

  • NIST CSF

  • PCI DSS 4.0

  • SOC-2

  • NCSC Best Practices

Related