Design, implement, and manage CI/CD pipelines in Azure DevOps with a strong focus on security, ensuring smooth and secure delivery of software applications.
Integrate security tools and practices
Manage and secure cloud infrastructure on Azure, including monitoring, logging, and compliance enforcement across different environments (dev, test, production).
Build, maintain, and secure Infrastructure as Code using tools like Terraform, ARM templates, or Azure Blueprints.
Collaborate with security teams to respond to security incidents, manage vulnerabilities, and perform root cause analysis.
Regularly audit the Azure environment to ensure compliance with industry standards
Work closely with development, IT, and security teams to implement security best practices and provide security guidance throughout the software development lifecycle.
Set up and maintain security monitoring tools such as Azure Security Center, Azure Monitor.
Experience:
3+ years of experience in a DevSecOps role with a strong focus on security.
Hands-on experience with Azure cloud services and architecture.
Experience with setting up secure CI/CD pipelines and automating security in the development lifecycle.
Technical Skills:
Proficient with Azure DevOps, Git, and pipelines.
Strong experience with Infrastructure as Code (IaC) tools like Terraform, ARM templates, or similar.
Experience with security tools
Strong understanding of Azure Security features like Azure Security Center, Azure AD, Key Vault, and Azure Policy.
Familiarity with containers (e.g., Docker, Kubernetes) and their security considerations.
Certifications:
Microsoft Azure certifications (e.g., Azure Security Engineer, Azure DevOps Engineer) are a plus.
