Azure DevSecOps Engineer

Requirement/Must Have:

• Strong experience with Microsoft Azure cloud services.
• Hands-on experience designing and implementing CI/CD pipelines in Azure DevOps, GitHub Actions, GitLab, or Jenkins.
• Experience integrating security tools into CI/CD pipelines including SAST, DAST, SCA, secrets scanning, and container security.
• Experience with tools such as Veracode, Snyk, OWASP ZAP, Aqua, Trivy, and Checkov.
• Strong knowledge of Infrastructure as Code using Terraform, Bicep, Pulumi, or CloudFormation.
• Experience applying CIS benchmarks and NIST standards.
• Experience with Open Policy Agent and Conftest for policy enforcement.
• Experience performing IaC security scanning using tools such as Checkov and tfsec.
• Strong understanding of cloud-native security tools including Azure Key Vault, Defender for Cloud, and Sentinel.
• Strong understanding of identity and access management, network security, encryption, and secure cloud architecture.

• Experience securing multicloud environments with a focus on Azure.
• Experience conducting secure code reviews and implementing secure coding standards.
• Experience enforcing DevSecOps best practices across development and operations teams.
• Experience working within the full software development lifecycle.

• Design and implement secure CI/CD pipelines with integrated security checks.
• Automate security gates for static, dynamic, and dependency scanning.
• Integrate container and infrastructure security controls into deployment workflows.
• Secure Azure cloud infrastructure using native services and best practices.
• Implement network security, encryption, identity and access management, and secure configurations.
• Build and manage secure infrastructure using Infrastructure as Code.
• Enforce infrastructure security policies using policy-as-code tools.
• Conduct infrastructure and configuration security scans to identify and remediate misconfigurations.
• Collaborate with development, operations, and security teams to improve application and infrastructure security.
• Define secure coding standards and perform secure code reviews.
• Mentor junior engineers on secure development and deployment practices.
• Promote and implement a Security-as-Code culture across the organization.

• Experience working in regulated or compliance-driven environments.
• Strong documentation and communication skills.
• Ability to drive security initiatives across cross-functional teams.

• DevSecOps pipeline automation.
• Azure cloud security architecture.
• Infrastructure as Code security.
• CI/CD automation and integration.
• Container and application security.
• Policy-as-code implementation.
• Stakeholder collaboration and mentoring.

• Bachelor s degree in Computer Science, Information Technology, Cybersecurity, or related field preferred.
• Relevant cloud or security certifications preferred.