Job Specifications
We are seeking a highly experienced DevSecOps engineer.
KEY RESPONSIBILITIES
Cloud Platform deployments:
· Design and implement Azure Cloud services for applications and projects
· Ensure implementation follows architectural and security guidelines and principles.
Cloud Security Implementation:
Strengthen Azure security posture with tools like Azure Sentinel, RBAC, and PIM.
Automate threat detection, alerting, and incident response workflows.
Cloud Automation and IaC:
Develop and manage Terraform templates for infrastructure automation.
Integrate compliance and governance into CI/CD pipelines via Azure DevOps.
Identity and Access Management (IAM):
Configure and automate Azure Entra ID (Azure AD) for secure identity management.
Enforce least-privilege access with RBAC and PIM automation.
Cloud Networking and Security:
Design and secure Azure networks (VNets, NSGs, firewalls, private endpoints).
Automate and monitor network configurations to maintain a secure architecture.
DevSecOps Practices:
Embed security in CI/CD pipelines with vulnerability scans and secure coding standards.
Collaborate with teams to adopt DevSecOps best practices.
Monitoring and Reporting:
Optimize Azure Monitor, Log Analytics, and Sentinel for actionable insights.
Automate alerting and create custom dashboards for security and performance.
KEY QUALIFICATIONS
Technical Expertise
Expert-level knowledge of Azure services, including Azure Entra ID, RBAC, PIM, Azure Policy, most if not all PaaS services and Azure Monitor.
Some hands-on experience with Azure Sentinel for SIEM and SOAR capabilities, including automating security workflows and response playbooks.
Strong experience in Infrastructure as Code (IaC) using Terraform, including module development and state management.
Expert knowledge of Azure DevOps, including pipeline creation, repository management, and artifact deployment.
Proficiency in cloud networking concepts: VNets, NSGs, load balancers, firewalls and application gateways.
Working knowledge of security frameworks and compliance standards (e.g., CIS, NIST, ISO 27001).
Familiarity with automation tools and languages (PowerShell, Python, Bash) for cloud resource orchestration.
Experience with container security and AKS best practices.
SOFT SKILLS
Strong analytical and problem-solving skills.
Excellent communication and collaboration skills, with the ability to work across teams.
Proactive mindset to identify and mitigate security risks.
This role is ideal for a candidate passionate about cloud security, automation, and DevSecOps methodologies, who thrives in dynamic environments requiring expert knowledge of Azure and advanced security tools.
Right to Work
Applicants must have the legal right to work in the UK.
Location
The role is hybrid with a requirement to be at the client site once a week (London).
Rate
The day rate is £550-£650 outside IR35 depending on experience