Azure DevSecOps Engineer - Secure Cloud CI​/CD Leader

Job Overview

Azure Dev Sec Ops  Engineer

Location:

Cary, NC / HYBRID
Duration:
Long Term Project

Experience:

10+ years

• Implement and maintain secure Dev Ops pipelines and infrastructure across multicloud platforms including Azure.
• Design and automate CI/CD pipelines with integrated security checks using Azure Dev Ops, Git Hub Actions, Git Lab, and Jenkins.
• Automate security gates for SAST, DAST, SCA, secrets scanning, and container security using Veracode, Snyk, OWASP ZAP, Aqua, Trivy, and Checkov.
• Define policies and integrate them as code to enable scalable secure deployments.
• Secure cloud infrastructure in Azure using native services, including network security, data encryption, IAM, and secure VPC configurations.
• Manage Infrastructure as Code using Terraform, Bicep, Pulumi, or Cloud Formation to build and maintain secure infrastructure.
• Apply CIS benchmarks and NIST standards, and enforce IaC security using OPA, Conftest, Checkov, and tfsec.
• Conduct IaC scanning for misconfigurations.
• Collaborate with development teams to define secure coding standards and perform secure code reviews.
• Mentor junior Dev Ops and security engineers on secure development and deployment practices.
• Promote a Security-as-Code culture across the organization.

• Experience with Azure Dev Ops, Azure Key Vault, Azure Defender for Cloud, and Azure Sentinel.
• Proficiency with CI/CD tools such as Git Hub Actions, Git Lab, and Jenkins.
• Knowledge of security scanning tools for SAST, DAST, SCA, secrets, and container security.
• Experience with Infrastructure as Code using Terraform, Bicep, Pulumi, or Cloud Formation.
• Familiarity with CIS benchmarks, NIST standards, OPA, Conftest, and IaC security enforcement tools.
• Strong understanding of Dev Sec Ops  principles, cloud‑native security tools, and modern Dev Ops practices.