Details:
- Job Type: Permanent
- Job Status: Full-Time
- Location: Barrow-In-Furness Cumbria
- Date: 1 week ago
Description:
DevOps Consultant
Barrow/Remote (on site element/negotiable)
£50K + Benefits
A DevOps Consultant is required for our client who are based in Barrow. You will join the Software Development & Server Management Team and will report directly to the Head of IT. This role is integral in the deployment, maintenance and security of a large estate of cloud based servers hosting bespoke in-house built cloud software, across multiple datacentres. You will be hands on with practical experience. The majority of this estate runs Linux so ideal candidates would have experience of this. You will be heavily integrated with the Full Stack Developers in the team and you will also be involved in the deployment of new cloud servers, the configuration maintenance and hardening/securing of each server.
Responsibilities:
Server Management, Maintenance, Upgrades & Compliance
Responsible for the entire server lifecycle, from server deployment to maintaining, upgrading, and ensuring compliance of every server in the estate.
Resource increases when necessary for scalability - RAM, Disk Size, CPU etc.
MySQL Database management, maintenance and compliance.
MySQL Replication maintenance and management (Master - Master & Master- Slave relationships).
Linux Operating System distribution migration (moving servers to a new Linux distribution where required).
Updating server software repositories via DNF.
NFS mounting and management in a secure environment
Implementing and maintaining TDE/At Rest Encryption (or similar).
Server Account Management.
WHM/CPanel Configuration and Management.
Backup configuration and restoration testing.
Linux & Windows Server Daily Business Continuity Checks
To ascertain and document server health via daily check processes - which are to be refined.
To resolve availability, integrity or security issues as they arise.
Able to communicate risk in a measured, calculable way in line with ISO27001 methodologies.
Information Security Engineering
You will be responsible for improving and maintaining the security baselines across the company, from conceptualisation to implementation and daily maintenance, this security responsibility includes the responsibility of the servers as well as the bespoke built applications and code.
Server Environment Hardening
ModSec Firewall Configuration
Securing Network Environments
Firewall Configuration (Server and Network Level)
PKI Management
Intrusion Detection and Prevention
TLS, HSTS & CSP Configuration Management
Risk Management and Treatment
Vulnerability Management and Triage
Routine internal system audits
Establishing InfoSec baselines within the company
Configuring and managing Cloudflare as a reverse proxy and Web Application Firewall
WAF Event risk management and triage
Zero Trust configuration and management
Security best practices and experience conforming to standards such as:
ISO27001:2022 Framework
OWASP
NIST CSF
PCI DSS 4.0
SOC-2
NCSC Best Practices