DevSecOps Engineer

Position Overview

The Engineer II, DevSecOps is a fully competent engineering professional who independently designs, implements, supports, and improves secure platform and software delivery and automation solutions within Azure environments. This role is accountable for CI/CD platforms, automation frameworks, and security integration across the software development lifecycle.

The role partners closely with Software Engineers, Cloud Platform Engineers, Security Engineers, and Architects to enable secure, automated, and resilient solution delivery aligned with DevSecOps best practices.

Key Responsibilities

• Design and implement DevSecOps solutions and secure CI/CD processes.
• Own day to day engineering activities for DevSecOps platforms, automation tooling, and delivery pipelines.
• Manage CI/CD platforms and code repositories, developing automated pipelines for application deployment and infrastructure provisioning.
• Troubleshoot and resolve moderately complex pipeline, automation, or integration issues.
• Automate testing, security scanning, and compliance validation within software delivery pipelines.
• Integrate security controls including static analysis, dependency scanning, container scanning, and policy validation into CI/CD workflows.
• Develop, maintain, and version reusable Infrastructure-as-Code (IaC) modules and templates (e.g., Terraform, Ansible, ARM) to enable secure, standardized, and scalable Azure infrastructure provisioning.
• Implement GitOps and declarative infrastructure deployment models within Azure environments.
• Promote DevSecOps best practices and secure coding standards across engineering teams.
• Support architecture, capacity, performance, resiliency, and lifecycle planning of DevSecOps toolchains.
• Develop and maintain documentation, standards, and secure pipeline patterns.
• Implement monitoring, logging, and observability within CI/CD and deployment processes.
• Contribute to high-availability and disaster recovery strategies for CI/CD and automation platforms.
• Contribute to automation, monitoring, and service improvement efforts.
• Provide guidance to less experienced engineers as needed.
• Partner with stakeholders to support project and operational objectives.

Required Qualifications

• Solid engineering knowledge in DevSecOps practices and CI/CD automation within Azure environments.
• Experience designing and maintaining CI/CD pipelines using Azure DevOps or GitHub Actions.
• Experience integrating security controls into automated pipelines (SAST, DAST, container scanning, secrets management).
• Proficiency with Infrastructure-as-Code tools and scripting languages.
• Strong understanding of source control management and Git-based workflows.
• Understanding of availability, performance, security, compliance, and supportability considerations.
• Ability to independently deliver moderate complexity technical work.
• Strong problem solving and root cause analysis skills.
• Ability to participate in technical reviews and recommend improvements.
• Effective collaboration across technical and business teams.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Engineering, or related field (or equivalent experience).
• Microsoft Certified: Azure DevOps Engineer Expert.
• Microsoft Certified: Azure Administrator Associate.
• Certified Kubernetes Administrator (CKA) or equivalent.
• 5+ years of experience in DevOps, DevSecOps, or Platform Engineering roles.
• Experience implementing enterprise DevSecOps governance and secure software delivery frameworks.
• Experience supporting containerized workloads and Azure Kubernetes Service (AKS).
• Strong communication, influence, and stakeholder alignment skills.