DevSecops Engineer

Your Job
You will design, implement, and operate secure, scalable CI/CD platforms that enable engineering teams to deliver reliable software quickly while embedding security controls across the SDLC. This role balances delivery velocity, operational excellence, and security-by-design to ensure Azure cloud and containerized application environments are observable, compliant, and production-ready.


Our Team
You'll join a platform/DevSecOps team that partners closely with development, QA, and product groups to provide CI/CD, infrastructure, and security guardrails. The team is responsible for cloud platform stability, deployment automation, and driving security and reliability improvements across multiple services and environments.


What You Will Do

• Build and evolve CI/CD platforms so engineering teams can ship features faster with automated build, test, security validation, and safe deployments.
• Provision and optimize Azure infrastructure for scalability, reliability, and cost efficiency using Infrastructure as Code (Terraform / ARM / Bicep).
• Automate environment provisioning and application deployments to reduce manual work and configuration drift.
• Embed ShiftLeft security into pipelines by integrating SAST, DAST, Software Composition Analysis, container image scanning, and secrets detection.
• Design, operate and harden containerized workloads (Docker, AKS) and define container security best practices.
• Implement IAM and least-privilege access patterns across CI/CD, cloud, and platform components.
• Secure cloud and network architectures through segmentation, private endpoints, NSGs, WAFs, and other Azure-native controls.
• Define observability standards (metrics, logs, traces), implement monitoring/alerting, and support SLIs/SLOs to improve reliability and response.
• Own release and rollback strategies (blue/green, canary), as well as backup, DR, and business continuity planning.
• Lead threat modeling, risk assessments, security design reviews, and support incident response and post-incident remediation.
• Centralize security logging and integrate with SIEM; securely manage secrets, certificates, and keys (Azure Key Vault).

Who You Are (Basic Qualifications)

• 4+ years of handson experience in DevOps, DevSecOps, or Cloud Engineering roles.
• Practical experience with CI/CD platforms (Azure DevOps, Jenkins, GitHub Actions).
• Strong handson Microsoft Azure experience and proven use of IaC (Terraform, ARM templates, and/or Bicep).
• Proficient with scripting/automation (PowerShell, Bash, Python) and container orchestration (Docker, Kubernetes/AKS).
• Solid knowledge of application security fundamentals (SAST/DAST/SCA), OAuth 2.0 / JWT, networking (VNETs, DNS, load balancing), and monitoring tools (Application Insights, Log Analytics).

What Will Put You Ahead

• Experience with policy-as-code (Azure Policy, OPA) and automated governance.
• Familiarity with cloud cost governance / FinOps practices.
• Handson experience supporting multi-environment pipelines (Dev / UAT / Prod) and release promotion workflows.
• Understanding of SRE concepts (SLIs, SLOs, error budgets) and observability tooling (Prometheus, Grafana).
• Relevant certifications (e.g., Microsoft Azure certifications, CKA, CISSP) or demonstrable experience with vulnerability management, SIEM tooling, and incident response.