About us

NxtPort is building the next digital link in the digital port infrastructure of the Port of Antwerp-Bruges and develops platforms to make the cargo flow in the port faster, safer, and more efficient.

Job Description

About the role

We are looking for an experienced Senior Cloud, Infrastructure & Security (DevSecOps) Engineer. In this role, you will be responsible for designing, implementing, and managing scalable and secure cloud environments, with a specific focus on the maritime sector. You will work closely with product and development teams and act as an expert in the field of cloud infrastructure, security, and governance.

Your responsibilities

• Design, implement, and manage cloud infrastructures in Azure using Infrastructure as Code (Terraform, Bicep, Terraform AVM modules).
• Implement security and governance frameworks, including ISO27001, CAF/WAF, Microsoft Defender, PIM, Conditional Access, and Azure Policy.
• Support product teams with cloud transformations, app modernization, and migration projects.
• Develop and maintain CI/CD pipelines (Azure DevOps, YAML) and containerized environments (AKS, Docker, Kubernetes).
• Apply best practices in the areas of security, compliance, and FinOps.
• Integrate and manage EDI and AS2 protocols within cloud environments and enterprise architectures.
• Share knowledge, mentor, and actively keep up with new technologies and best practices.
• Communicate and coordinate with stakeholders and clients, focusing on collaboration and project continuity.

Profile

• At least 5 years of experience in Cloud, Infrastructure, and Security Engineering.
• In-depth knowledge of Azure, Terraform, Bicep, PowerShell, and Kubernetes.
• Experience with governance frameworks such as CAF/WAF and ISO27001.
• Strong communication skills and a client-oriented approach.
• Experience at government institutions in the maritime logistics sector is a must.
• Relevant certifications such as CKA, Terraform Associate, Azure Solution Architect, DevOps Engineer Expert, and FinOps practitioner are a plus.
• Demonstrable experience in scalable and modular cloud environments.
• Familiarity with monitoring tools such as Prometheus, Grafana, and ELK.
• Experience with scripting (PowerShell, Bash, Python) and automation of cloud processes.

Technologies & Tools

Azure, Terraform, Terraform AVM modules, Bicep, Azure DevOps, CI/CD, YAML pipelines, AKS, Docker, Kubernetes, Microsoft Defender for Cloud, Defender for Endpoint, Defender for Identity, Azure Policy, Conditional Access, Privileged Identity Management, ISO27001, CAF/WAF, modular cloud infrastructure, FinOps, monitoring (Prometheus, Grafana, ELK), PowerShell, Bash, Python, EDI, AS2.

Practical

• Fixed office days minimum of 2 to 3 days, with the possibility to work from home
• Assignment can be extended after a positive evaluation
• NxtPort reserves the right to request the daily rate from consultants with a self-employed status
• Place of employment: Havenhuis. If travel is required, the terms in the assignment letter apply
• Security screening:

All consultants/freelancers who will be employed at NxtPort are subject to security screening: The screening consists of a comprehensive investigation into a person's background and reliability. This investigation is carried out by consulting various judicial and police databases. The aim is to assess whether a person is reliable to perform a critical function and/or to gain access to sensitive infrastructure. The screening applies to many sectors, including the port sector.

Upon submitting the proposal, the Supplier must agree to only propose Consultants who are willing to undergo this security investigation.

The security investigation process can take up to 30 days: the Supplier accepts this waiting period and ensures that the candidate remains available during the screening process.

Only the Consultant(s) from the Supplier who are selected by the Client for this contract will be subject to the security investigation.

The Client's Security Officer (as administrative authority) forwards the individual request for security investigation to the competent Federal Police, who prepares a security advice based on the security investigation.

A negative security advice is communicated to the relevant Consultant via the Client's Security Officer (as administrative authority). This notification states the reasons justifying this decision, except for information whose disclosure could harm the fundamental interests of Belgium or the State. The notification also includes information about the possibility to appeal this decision.

If there is no positive security result (for example, when no advice can be given) from the Federal Police, the vacancy will be terminated without contracting.

If the positive security advice is lost during the term of the contract, the contract will be terminated without any compensation.