Azure DevOps Security Engineer

Job Details

Description

SUMMARY/PURPOSE: The Azure DevOps Security Engineer will be critical in designing, implementing, and managing secure DevOps pipelines and cloud infrastructure within Microsoft Azure. This role ensures security throughout the software development lifecycle (SDLC), integrates best practices, and protects sensitive data and systems from potential threats. The ideal candidate will collaborate with development, operations, and security teams to ensure smooth and secure deployments across cloud environments.

Position Responsibilities/Accountabilities

• Design and implement secure DevOps practices across Azure pipelines, including CI/CD workflows.
• Integrate security tools and processes into DevOps pipelines to enable secure code development, testing, and deployment.
• Ensure secure configuration of Azure resources, including virtual machines, storage, networking, and Kubernetes (AKS).
• Apply security frameworks to DevOps environments.
• Manage identity and access controls across Azure services using Azure AD, RBAC, and privileged access management (PAM).
• Enforce least privilege access and manage service principals and managed identities securely.
• Monitor and ensure compliance with security policies and governance standards.
• Automate security testing processes (SAST, DAST, IAST) and integrate them within CI/CD pipelines.
• Implement vulnerability scanning tools and manage dependencies to prevent security risks.
• Use Azure Policy, Blueprints, and Infrastructure-as-Code (IaC) to enforce security rules at scale.
• Implement Azure Sentinel and Security Center to monitor security events across infrastructure and applications.
• Configure logging and alerting mechanisms for security threats using Azure Monitor and Log Analytics.
• Lead incident response efforts to address vulnerabilities and security incidents in cloud environments.
• Work closely with developers and security teams to implement security controls aligned with business needs.
• Promote DevSecOps practices by fostering a culture of collaboration and continuous security improvement.
• Stay updated with emerging threats, Azure platform updates, and security best practices.
• Perform other duties as assigned.
  
  

Esstial Skills & Experience

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
• 5 years of experience in cloud security, DevOps, or related roles with a focus on Microsoft Azure.
• Cloud Platforms: Strong expertise in Microsoft Azure services (VMs, AKS, App Services, Storage, Networking).
• DevOps Tools: Experience with Azure DevOps, GitHub Actions, Jenkins, or similar CI/CD tools.
• Security Tools: Knowledge of SAST, DAST, dependency scanning, and vulnerability management tools (e.g., OWASP, Aqua, SonarQube).
• Identity & Access Management: Familiarity with Azure AD, RBAC, service principals, and access control policies.
• Infrastructure as Code (IaC): Experience with ARM templates, Terraform, or Bicep.
• Monitoring & Response: Proficiency with Azure Sentinel, Security Center, Log Analytics, and incident management processes.
• Strong problem-solving & analytical thinking skills.
• Ability to collaborate and communicate effectively with a diverse variety of constituents.
• Automation & continuous improvement mindset.
• Strong attention to detail & risk management.
  
  

Physical Demands & Work Environment

• Work is normally performed in a typical interior/office work environment.
• Work environment involves limited to no exposure to hazards or physical risks