JOBSEARCHER

Azure DevOps Engineer

Location: Onsite 3 days/week – Long Beach, CAWho We Are Provoke is a global consulting firm building AI-native solutions that transform how work gets done. Founded on a culture of innovation, growth, and curiosity, we partner with global clients to design and deploy agentic AI embedded directly into workflows so teams move faster, think smarter, and scale with purpose.Overview We're looking for an experienced Azure DevOps Engineer to join our consulting team and work on-site with one of our clients, a regulated organization undertaking a strategic migration from on-premises infrastructure to Microsoft Azure. As a Provoke consultant embedded with the client, you will design, build, and operate the CI/CD pipelines, infrastructure-as-code, and cloud platform foundations that carry their workloads through this transition. This is a hands-on engineering role at the center of the client's cloud journey, working across their development, operations, security, and compliance teams to deliver a secure, auditable, and resilient landing zone.Why This Role Real ownership of a landing zone build, not a maintenance role on an already-mature environment.A chance to shape how a regulated organization approaches automation, governance, and audit-readiness from the ground up.Exposure across development, security, risk, and compliance functions, broadening your footprint beyond a single team.Key Responsibilities Design and implement Azure landing zones, subscriptions, and governance guardrails (management groups, Azure Policy, RBAC) aligned to regulatory and internal control requirements.Build and maintain CI/CD pipelines in Azure DevOps (and/or GitHub Actions) that automate build, test, security scanning, and deployment with full audit trails and approval gates.Develop infrastructure-as-code using Terraform, Bicep, or ARM templates to provision reproducible, version-controlled environments, following GitOps practices so infrastructure changes are reviewed and deployed the same way as application code.Lead the migration of on-premises workloads to Azure — assessing, re-hosting, re-platforming, and re-architecting applications and data as appropriate.Implement observability across the platform: centralized logging, monitoring, and alerting via Azure Monitor, Log Analytics, and Application Insights.Embed security and compliance controls into the delivery lifecycle (DevSecOps), including secrets management with Azure Key Vault, vulnerability scanning, and policy-as-code.Establish cost visibility and governance for cloud resources, including budgets, tagging strategy, and Azure Cost Management, so spend stays predictable through the migration.Automate change management and release processes so that deployments are controlled, reversible, and evidenced for audit.Collaborate with development, security, risk, and compliance teams to translate regulatory obligations into technical controls.Contribute to disaster recovery, backup, and business continuity design for cloud-hosted workloads.Mentor engineers on cloud-native and DevOps practices and help mature the organization's platform engineering culture.Required Qualifications 5+ years in a DevOps, platform, or cloud engineering role, with demonstrable hands-on Microsoft Azure experience.Strong proficiency with Azure DevOps (Pipelines, Repos, Artifacts, Boards) or GitHub Actions.Practical experience with infrastructure-as-code (Terraform, Bicep, or ARM) in production.Solid scripting and automation skills (PowerShell, Bash, or Python).Working knowledge of containerization and orchestration (Docker, Kubernetes / Azure Kubernetes Service).Experience implementing CI/CD with automated testing, security scanning, and controlled release gates.Understanding of cloud networking, identity (Microsoft Entra ID / Azure AD), and security fundamentals.Experience migrating workloads from on-premises data centers to public cloud.Familiarity with operating in a regulated environment and producing evidence for audit and compliance.Comfort using AI-assisted engineering tools (GitHub Copilot, Claude Code, or similar) to accelerate pipeline authoring, IaC development, and troubleshooting, with sound judgment about where to verify AI-generated output rather than trust it outright.Preferred Qualifications Relevant Azure certifications (e.g., AZ-400 DevOps Engineer Expert, AZ-104 Administrator, AZ-305 Solutions Architect).Experience with regulatory frameworks relevant to our industry (e.g., SOC 2, ISO 27001, PCI-DSS, HIPAA, GDPR, or FCA/PRA requirements).Exposure to policy-as-code and compliance automation tooling.Experience with hybrid connectivity (ExpressRoute, VPN, Azure Arc) during phased migrations.Background working alongside risk, audit, or information security functions.Experience with third-party observability tools (Splunk, Datadog, or Grafana) alongside Azure-native monitoring, particularly useful for hybrid visibility during a migration.Compliance & Security Focus This role sits at the intersection of engineering velocity and regulatory control. The successful candidate understands that in a regulated business, automation is not only about moving faster — it is about making every change controlled, evidenced, and repeatable. You will be expected to champion a "secure and compliant by default" approach: least-privilege access, immutable audit logging, segregation of duties in the release process, and controls that satisfy both internal risk teams and external regulators. Prior experience turning compliance obligations into working technical controls will set you apart.Location US; Long Beach, CA area. Onsite 3 days/week.Pay Range $60-85/hrRole Type & Work Authorization This role is offered as W2 hourly employmentCandidates must be authorized to work in the U.S. without VISA SponsorshipNo agencies, please. We're conducting this search internally and are not partnering with external recruiting agencies for this role. We kindly ask that agencies refrain from contacting us regarding candidate submissions.