The Client:
Our client, a leading companies in USA, is looking for a highly motivated and experienced Azure DevSecOps EngineerΒ to work in USA location.
What Youβll Love:
- This role is part of a long-term strategic project within the Bank, so this is an opportunity to work for the top bank in the country on a Permanent / Rolling Contract basis.
- The role offers a Competitive Day Rate and Hybrid working option is available.
What you are expected to have:
- 5-10 years of overall experience with relevant domain expertise.
- Hands-on experience with Azure DevOps and GitHub Actions (multi-stage CI/CD pipelines).
- Strong understanding of DevSecOps practices including shift-left security and automated security testing.
- Experience integrating SAST, DAST, SCA tools (e.g., SonarQube, Checkmarx, OWASP ZAP).
- Expertise with Azure Kubernetes Service (AKS) including cluster hardening and policy enforcement.
- Experience implementing security controls using Azure Policy, Defender for Cloud, and blueprints.
- Infrastructure as Code (IaC) expertise using ARM, Bicep, or Terraform.
- Knowledge of Zero Trust, RBAC, identity governance, and Entra ID (AAD) integration.
- Knowledge of monitoring and observability tools such as Azure Monitor, Log Analytics, App Insights.
- Containerization experience using Docker with security best practices.
- Strong understanding of networking security (NSGs, firewalls, WAF, Private Link).
Good-to-Have
- Experience with SIEM/SOAR (Microsoft Sentinel, Defender XDR).
- Knowledge of compliance frameworks (CIS Benchmarks, NIST 800-53, ISO 27001).
- Automation scripting using Python or PowerShell.
- Experience with secret scanning and credential hygiene tools.
- Familiarity with security in microservices and distributed systems.
- Cloud cost governance and FinOps awareness.
- Professional certifications
What you will do:
- Design, build, and maintain secure CI/CD pipelines using Azure DevOps and GitHub Actions.
- Integrate security scanning, compliance checks, and vulnerability management into pipelines.
- Implement secure IaC deployments using Bicep, ARM, or Terraform.
- Harden AKS clusters and enforce policies using OPA/Gatekeeper or Azure Policy.
- Collaborate with development teams to embed security best practices early in SDLC.
- Continuously monitor workloads using Microsoft Defender for Cloud and Sentinel.
- Troubleshoot production issues and drive resolution with RCA documentation.
- Perform threat modeling and risk assessments for new workloads.
- Implement identity and access governance including RBAC, Privileged Identity Management (PIM).
- Maintain documentation, runbooks, and operate secure, automated pipelines.
You are good to apply if you are:
- Valid Work Permit to work in USA.
- Residing in the specified job location currently.
Why Should You Apply?
Aside from a highly competitive day rate/salary, this is a role that will provide a great balance of support and challenge for someone who wants to take the next step in their career.
Interested? Apply here:
If you feel youβve got the right skills and experience, we would absolutely love to hear from you!
Fill out the form alongside and do not forget to attach your CV.