| Roles and Responsibilities: |
Technical Architecture & Design
- Own and evolve the system architecture across backend (Spring Boot 3), frontend (React 18 / TypeScript), batch (Spring Batch), and infrastructure (Azure AKS / Helm) layers.
- Author and maintain Architecture Decision Records (ADRs) to document design choices, trade-offs, and rationale for long-term maintainability.
- Lead the design of multi-datasource strategies, dual-write transaction patterns, and safe migration approaches for large volumes of legacy stored procedures and data access objects.
- Define and enforce API contract standards (REST design, versioning, error schema) across all project endpoints.
- Provide architectural guidance on cloud-native patterns: stateless services, externalized configuration (e.g., Azure Key Vault), container security, and Helm overlay strategies for multi-cloud portability.
Delivery Leadership & Sprint Management
- Lead sprint planning, backlog grooming, and daily stand-ups; ensure delivery milestones are met across all remaining phases (UAT, production, post-launch).
- Define the technical scope, effort estimates, and acceptance criteria for each sprint.
- Track and report delivery progress, risks, and quality metrics to IT management and business stakeholders.
- Drive the AI-assisted development model (GitHub Copilot / equivalent), establishing prompt engineering practices, review protocols, and guardrails to sustain high-velocity delivery safely.
- Coordinate with external parties for infrastructure readiness: IdP credential provisioning (e.g., Okta OIDC), Kubernetes cluster onboarding, container registry access, and API gateway configuration.
Hands-on Technical Contribution
- Contribute production-ready code across backend (Spring Boot 3 / Java 17), frontend (React 18 / TypeScript), and infrastructure (Helm / Dockerfile) as required.
- Lead complex technical deliverables: Spring Security 6 + OAuth2/OIDC integration, multi-datasource HikariCP wiring, stored procedure mapping via SimpleJdbcCall, and file processing pipelines.
- Oversee Java batch job modernisation (e.g., Spring Boot version uplift, Java version upgrade) including scheduling and integration concerns.
- Review and harden all Dockerfiles and Helm charts to meet container security requirements (non-root runtime, least-privilege, secrets via vault integration).
Code Quality & Security Governance
- Own and enforce all quality gates: SpotBugs SAST, OWASP Dependency-Check SCA, npm audit, and Veracode scanning.
- Conduct structured code reviews, enforce coding standards, and ensure all deliverables are free of critical/high vulnerabilities before promotion to UAT/production.
- Govern the SIT test suite and maintain a 100% pass rate gate as a mandatory promotion criterion.
- Champion secure-by-design practices aligned to OWASP Top 10 across all application layers.
Team Leadership & Mentoring
- Lead, mentor, and upskill a team of 3–5 developers in modern Java/Spring Boot 3, React 18, and cloud-native best practices.
- Conduct 1-on-1s, provide constructive code-review feedback, and foster a culture of continuous improvement.
- Establish and maintain onboarding documentation, coding standards, and a shared knowledge base for the team.
GitHub Copilot – AI Delivery Governance
- Own and govern the team's use of GitHub Copilot (GHCP) as the primary AI coding assistant across all phases of the programme delivery.
- Establish and enforce team-wide prompt engineering standards: context-rich prompts, incremental verification, and consistent prompt patterns for Spring Boot, React, Helm, and Dockerfile generation.
- Define and communicate the AI output review protocol: all GHCP-generated code must be reviewed for correctness, security (OWASP Top 10), and architectural conformance before commit — no unreviewed AI code enters the codebase.
- Set guardrails for responsible AI usage: prohibit submission of credentials, PII, production configuration, or proprietary business logic in GHCP prompts; ensure compliance with the organisation's AI and data usage policies.
- Track and report AI-assisted delivery productivity metrics (AI-assisted vs. total lines, time saving estimates) as part of management reporting.
- Coach and upskill developers on effective GHCP usage — from basic code completion to agentic coding tasks, ADR drafting, test generation, and legacy code analysis.
- Evaluate and recommend improvements to the AI-assisted SDLC model as GHCP capabilities evolve (e.g., GHCP Agent, workspace-level context, MCP integrations).
Stakeholder & Cross-Team Engagement
- Serve as the primary technical point of contact for IT management, InfoSec, infrastructure teams, and business stakeholders.
- Translate business requirements and legacy system behaviour into actionable technical specifications and sprint tasks.
- Produce management-level progress reports, pre-UAT readiness summaries, and post-go-live support plans.
- Liaise with cloud infrastructure teams to ensure environment parity, overlay compatibility, and smooth promotion across dev, SIT, UAT, and production environments.
|