Designs, implements, and manages automated Infrastructure-as-Code (IaC) infrastructure provisioning to ensure usability, scalability, security, and efficiency.
Capabilities:
• Sets up and/or configures nominated on-premise infrastructure provider platforms if required, e.g. vSphere
• Automation (Virtual Compute), Pure Storage (File, Object, and Block storage), Oracle and SQL Server (Relational Database), Red Hat OpenShift (Container Platform) and Network Platform.
• Sets up and/or configures nominated on-premise infrastructure provisioning tools if required, e.g. Terraform Enterprise, Ansible Automation.
• Designs and implements simplified developer consumable “variable” files for each infrastructure resource type being provisioned (Virtual Compute, Storage, Database, Containers, Network Rules)
• Implements the underlying Terraform template (or Ansible playbook) to provision the infrastructure against the nominated on-premise infrastructure provider.
• Ensure that this provisioning works for different infrastructure deployment patterns defined for the organisation (e.g. 3N+1, 2N+1, N+1, N etc) in a way that shelters the developers from the underlying complexity.
• Ensures all resources are tagged correctly by designing the tagging scheme up front and pulling tag values from authoritative source prior to provisioning, e.g. ServiceNow
• Ensures suitable payloads encapsulating the provisioning request are made available to the governance approval and CMDB update tooling, e.g. ServiceNow
• Able to apply best practice Hybrid cloud design principles to IaC so that any future cloud usage is relatively easy to slot into the solution (Note: public cloud not required for Tech Spike).
• Utilises Configuration Management tooling to ensure that resources provisioned are configured correctly with the correct hardened images and post provisioning deployment of any agents that are required, e.g. Observability agents for monitoring or log forwarding.
• Implements security best practices to protect the provisioned infrastructure.
• Monitors infrastructure platforms, optimizes resource usage, and ensures high availability.