***We are unable to sponsor for this permanent full-time role***
***Position is Bonus eligible***
Prestigious Global Firm is currently seeking a Senior DevSecOps Engineer with strong Azure experience. Candidate will play a critical role for the design and delivery of secure, automated, and resilient technology solutions. Candidate will have hands-on technical expertise with strategic influence—driving DevSecOps maturity, improving release efficiency, and strengthening the organization’s security posture across cloud and delivery pipelines.
Responsibilities:
• Secure CI/CD Enablement: Design, build, and maintain secure continuous integration/continuous delivery (CI/CD) pipelines that streamline application build, testing, and deployment.
• Security Integration: Embed security tooling into the software development lifecycle, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), secrets scanning, and infrastructure security scanning.
• Infrastructure as Code (IaC): Develop and manage infrastructure using code with tools such as Terraform, Bicep, Azure Resource Manager (ARM), or CloudFormation.
• Cloud Security Management: Administer and secure cloud environments, primarily within Microsoft Azure, ensuring compliance and operational integrity.
• Container & Kubernetes Security: Implement and manage container and orchestration security, including image scanning, role-based access control (RBAC), and runtime protections.
• Standards & Governance: Establish and enforce secure coding, deployment, and access management standards across teams.
• Identity & Secrets Management: Secure and manage certificates, secrets, and identity/access controls using enterprise tools and best practices.
• Monitoring & Observability: Track system health and performance using monitoring and alerting platforms to proactively identify and resolve issues.
• Vulnerability Management: Coordinate remediation efforts and support compliance and regulatory initiatives.
• Troubleshooting & Optimization: Resolve production and deployment challenges and contribute to root cause analysis and continuous improvement.
• Automation: Streamline operational processes through scripting using tools such as PowerShell, Bash, or Python.
• Collaboration & Influence: Partner cross-functionally to enhance reliability, release quality, and security maturity across the organization.
• Mentorship & Advocacy: Guide engineers and champion DevSecOps best practices, fostering a culture of continuous learning and improvement.
Qualifications:
• Education: Bachelor’s degree in Computer Science or a related field, or equivalent practical experience.
• Experience: 8+ years in DevOps, Cloud Engineering, Systems Engineering, or DevSecOps, including 5+ years integrating security into CI/CD pipelines.
• DevSecOps Expertise: Deep experience with CI/CD platforms (e.g., Azure DevOps, GitHub Actions, Jenkins, GitLab) and embedding security controls throughout development workflows.
• Cloud & Infrastructure Knowledge: Strong experience with cloud platforms (especially Microsoft Azure and/or AWS) and Infrastructure as Code practices.
• Containerization & Orchestration: Hands-on experience with Docker and Kubernetes, including security best practices.
• Security Fundamentals: Solid understanding of application security concepts, secrets management, authentication protocols, and policy enforcement tools (e.g., Azure Policy, Open Policy Agent (OPA), Sentinel).
• Scripting & Automation: Proficiency in scripting languages such as PowerShell, Python, or Bash to drive automation and efficiency.
• Systems & Networking: Strong foundation in operating systems, networking, APIs, and distributed systems.
• Monitoring & Observability Tools: Experience with platforms such as Dynatrace, Prometheus, Grafana, ELK Stack (Elasticsearch, Logstash, Kibana), Splunk, or Azure Monitor.
• Collaboration & Communication: Excellent problem-solving, communication, and relationship-building skills, with the ability to influence cross-functional teams in a fast-paced environment.