The authority supervises the financial sector and runs an on-premises software development ecosystem that supports regulatory workflows, internal service desks, and a configuration management database. This role exists to define and implement a sustainable, self-hosted DevSecOps architecture aligned with the organisation's sovereignty and security requirements, with a focus on the SDLC and migrations away from Atlassian datacenter products such as Jira, Confluence, Bitbucket and Bamboo.
The mission
The immediate project is to assess the current DevOps and Atlassian datacenter edition setup, identify security and vendor-risk exposure, and produce a target architecture that keeps tooling on premises while reducing vendor lock-in. You will work with a small core team and stakeholders across development, security and operations to produce a migration plan that is compatible with a Microsoft .NET environment and possible Azure DevOps integrations.
Day to day you will lead the current state assessment, evaluate self-hosted alternatives, and design a progressive migration roadmap. Typical activities include technical audits, tooling evaluation for CI/CD and package management, designing SAST/DAST/SCA integration into pipelines, and supporting proof-of-concept deployments and handover documentation for platform teams and end-users.
Your responsibilities
- Lead a technical assessment of the existing Atlassian datacenter tools and CI/CD pipelines, producing a risk and remediation report focused on security, scalability and vendor dependency
- Define a target self-hosted DevSecOps architecture that integrates with the Microsoft .NET stack and existing infrastructure constraints
- Evaluate and recommend tooling alternatives for ticketing, wiki, Git service, CI/CD automation, Bamboo/Bitbucket replacements and CMDB, prioritising maintainability and sovereignty
- Design a stepwise migration roadmap, including impact analysis for development teams, operations and security processes, plus a communication plan for end-users
- Guide proof-of-concept deployments and assist initial pipeline implementations, delivering documentation and knowledge transfer to the in-house DevSecOps engineer
- Provide clear decision criteria and implementation guidance to reduce vendor lock-in while strengthening SAST, DAST and SCA coverage across the SDLC
Your profile
Essential skills
- Senior-level experience in SDLC design and DevSecOps architecture, with practical exposure to self-hosted DevOps platforms
- Hands-on experience with Atlassian products (Jira, Confluence, Bitbucket, Bamboo) and migrations away from on-premises Atlassian solutions
- Strong knowledge of application security tooling, including SAST, DAST and SCA, and secrets management practices
- Experience with ITSM, ticketing systems, CMDB practices and CI/CD pipeline automation
- Ability to perform technical audits and present actionable recommendations to technical and non-technical stakeholders
Preferred skills
- Experience integrating DevSecOps solutions with Microsoft .NET and Azure DevOps
Languages
- French C1, Dutch B2 (ability to work bilingually or with strong passive knowledge of the other language)