Azure DevOps & Security Automation Consultant

Azure Dev Ops & Security Automation Consultant

Aug 5, 2025 - Senior

• Company Introduction: Our development team uses Azure Dev Ops for our CI/CD pipelines, and our production environment is hosted on Azure. We are committed to a continuous deployment model.
• The Challenge: We have experienced several security incidents related to misconfigured pipelines and a lack of proper access controls in Azure. Our current CI/CD process is not fully secured, creating vulnerabilities in our deployment pipeline. We need to integrate security seamlessly into our Dev Ops workflow.
• Objective: The goal is to secure our Azure environment and automate security checks within our Azure Dev Ops pipelines, ensuring that security is a core part of our development and deployment process (Dev Sec Ops ).

• Conduct a security audit of our Azure Dev Ops pipelines and service connections.
• Review and harden our Azure infrastructure and resource group permissions.
• Implement security best practices for CI/CD pipelines (e.g., using secure variables, service principal with least privilege).
• Integrate security scanning tools (e.g., for static code analysis, vulnerability scanning) directly into our pipelines.
• Develop automated scripts to enforce security policies and configurations across our Azure resources.
• Provide detailed documentation on the new Dev Sec Ops  workflow and train our internal team on best practices.

• Extensive experience with Azure Dev Ops, including Pipelines, Repos, and Artifacts.
• Proven expertise in Azure cloud infrastructure and security services (e.g., Azure Security Center, Key Vault).
• Strong knowledge of scripting languages like Power Shell or Python.
• Experience with Infrastructure as Code (IaC) tools like Terraform or ARM templates.
• Microsoft Certified:
  Azure Dev Ops Engineer Expert or Azure Security Engineer Associate is highly desirable.

• Ability to work closely with development and operations teams.
• Excellent communication skills for technical explanations and training.
• Proactive and methodical approach to problem-solving.
• A comprehensive report on Azure Dev Ops and infrastructure security vulnerabilities.
• Secured and updated CI/CD pipelines with integrated security checks.
• Documentation of the new Dev Sec Ops  workflow and security policies.
• A final report summarizing the project outcomes and recommendations.

• Timeline: Project is expected to be completed within 40-60 days.

• Instructions:
• Submit a detailed proposal outlining your approach to securing our Azure environment and Dev Ops pipelines.
• Share case studies of similar projects and a brief summary of your skills.
• Provide your desired compensation for the project.

• Soft: Communication, Collaboration, Problem-solving, Training.

Notice:
You must have login as a freelancer to send a proposal.