DevSecOps Engineer

As a DevSecOps Engineer with expertise in Microsoft technology stack, you will work towards enhancing our security posture, integrate security practices into DevOps pipelines, and ensure compliance with industry security standards. This role requires a strong background in Azure DevOps, security automation, and cloud security best practices.

DUTIES & RESPONSIBILITIES

• Design, implement, and manage CI/CD pipelines using tools like Azure DevOps, or GitLab CI/CD.
• Implement security best practices in Azure DevOps, GitHub Actions, or other CI/CD pipelines.
• Automate build, test, and deployment processes to ensure fast and reliable releases.
• Deploy and manage cloud-based solutions in Azure, or Google Cloud (GCP).
• Optimize cloud resource utilization, security, and cost management.
• Work with Docker and Kubernetes (EKS, AKS, GKE) to deploy and manage microservices.
• Maintain high availability, scalability, and performance of production systems.
• Monitor and respond to security threats using Microsoft Sentinel (SIEM) and Defender for Endpoint.
• Ensure proper IAM (Identity & Access Management) and RBAC (Role-Based Access Control) policies in Azure AD.
• Apply Zero Trust principles and security monitoring across Azure workloads.
• Design and implement secure cloud architectures using Azure security services (e.g., Azure Security Center, Key Vault, Defender for Cloud).
• Work closely with developers, QA teams, and security engineers to improve software development workflows.
• Promote GitOps and automation-first culture to enhance operational efficiency.
• Document processes, conduct training, and drive best practices within the team.

KNOWLEDGE & EXPERIENCE

Education:

• Bachelors degree with Software engineering, IT or similar degree or relevant experience

Experience:

• 4 to 5 years of experience in DevOps, Cloud Security, ,Cloud Engineering, or Site Reliability Engineering (SRE)
• Hands-on experience with Azure cloud platform.
• Experience with security best practices in cloud and DevOps environments.

Credentials:

• Azure DevOps Expert (preferred)
• Microsoft security certifications (e.g., AZ-500, SC-200, SC-300, SC-100)

Knowledge and Skills:

• Strong expertise in CI/CD tools using Azure DevOps.
• Proficiency in Linux administration and scripting (Bash, Python, PowerShell).
• Proficiency in PowerShell, Python, or Bash for security automation.
• Hands-on experience with Azure security services like Defender for Cloud, Sentinel, Security Center, Key Vault, and Azure AD.
• Familiarity with monitoring & logging tools like Prometheus, Grafana, ELK, Datadog.
• Knowledge of OWASP Top 10, NIST, CIS benchmarks, and Secure SDLC principles.