Azure DevSecOps Engineer – USA

The Client:

Our client, a leading companies in USA, is looking for a highly motivated and experienced Azure DevSecOps Engineer to work in USA location.

What You’ll Love:

• This role is part of a long-term strategic project within the Bank, so this is an opportunity to work for the top bank in the country on a Permanent / Rolling Contract basis.
• The role offers a Competitive Day Rate and Hybrid working option is available.

What you are expected to have:

• 5-10 years of overall experience with relevant domain expertise.
• Hands-on experience with Azure DevOps and GitHub Actions (multi-stage CI/CD pipelines).
• Strong understanding of DevSecOps practices including shift-left security and automated security testing.
• Experience integrating SAST, DAST, SCA tools (e.g., SonarQube, Checkmarx, OWASP ZAP).
• Expertise with Azure Kubernetes Service (AKS) including cluster hardening and policy enforcement.
• Experience implementing security controls using Azure Policy, Defender for Cloud, and blueprints.
• Infrastructure as Code (IaC) expertise using ARM, Bicep, or Terraform.
• Knowledge of Zero Trust, RBAC, identity governance, and Entra ID (AAD) integration.
• Knowledge of monitoring and observability tools such as Azure Monitor, Log Analytics, App Insights.
• Containerization experience using Docker with security best practices.
• Strong understanding of networking security (NSGs, firewalls, WAF, Private Link).

Good-to-Have

• Experience with SIEM/SOAR (Microsoft Sentinel, Defender XDR).
• Knowledge of compliance frameworks (CIS Benchmarks, NIST 800-53, ISO 27001).
• Automation scripting using Python or PowerShell.
• Experience with secret scanning and credential hygiene tools.
• Familiarity with security in microservices and distributed systems.
• Cloud cost governance and FinOps awareness.
• Professional certifications

What you will do:

• Design, build, and maintain secure CI/CD pipelines using Azure DevOps and GitHub Actions.
• Integrate security scanning, compliance checks, and vulnerability management into pipelines.
• Implement secure IaC deployments using Bicep, ARM, or Terraform.
• Harden AKS clusters and enforce policies using OPA/Gatekeeper or Azure Policy.
• Collaborate with development teams to embed security best practices early in SDLC.
• Continuously monitor workloads using Microsoft Defender for Cloud and Sentinel.
• Troubleshoot production issues and drive resolution with RCA documentation.
• Perform threat modeling and risk assessments for new workloads.
• Implement identity and access governance including RBAC, Privileged Identity Management (PIM).
• Maintain documentation, runbooks, and operate secure, automated pipelines.

You are good to apply if you are:

• Valid Work Permit to work in USA.
• Residing in the specified job location currently.

Why Should You Apply?

Aside from a highly competitive day rate/salary, this is a role that will provide a great balance of support and challenge for someone who wants to take the next step in their career.

Interested? Apply here:

If you feel you’ve got the right skills and experience, we would absolutely love to hear from you!
Fill out the form alongside and do not forget to attach your CV.