Devsecops Engineer

Description:

We are seeking a motivated and skilled DevSecOps Engineer to join a leading financial organization’s Information Security and Platform teams. This role offers an exciting opportunity for professionals with 2 to 3 years of hands-on experience in DevOps and cybersecurity to contribute significantly to securing software development lifecycles within a fast-paced financial environment.

The successful candidate will take ownership of embedding security best practices throughout the entire software development lifecycle (SDLC), with a special emphasis on Azure cloud infrastructure and applications. You will work closely with multiple teams to ensure security is seamlessly integrated at every stage of development and deployment, protecting sensitive financial data and maintaining compliance with industry standards.

Key Responsibilities:

• Implement and maintain robust security controls across Azure-based infrastructure and applications, aligning with best practices in cloud security and zero-trust architectures.

• Collaborate with development, operations, and security teams to embed security checks and monitoring into CI/CD pipelines using modern automation tools.

• Lead efforts to monitor security posture through tools such as Azure Security Center, Sentinel, Darktrace, and vulnerability scanners.

• Develop, implement, and enforce security policies, standards, and procedures tailored to enterprise requirements.

• Conduct and manage penetration testing, red teaming exercises, and vulnerability assessments, ensuring timely remediation.

• Automate security and infrastructure management through scripting languages and Infrastructure-as-Code (IaC) tools like PowerShell, JSON, and Bicep.

• Continuously evaluate emerging threats and recommend appropriate risk mitigation strategies.

• Provide expert guidance on cloud security configurations and participate in security incident investigations as required.

Candidate Profile / Essential Skills:

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.

• Proven experience (2–5 years) in DevOps, DevSecOps, or cloud security roles, preferably within the financial services sector.

• Deep understanding of cloud infrastructure components (networking, storage, control plane) and security principles in cloud-native environments.

• Hands-on experience with Microsoft Azure services including Azure DevOps, Azure Security Center, Key Vault, and Azure Policy.

• Familiarity with security monitoring tools such as Azure Sentinel, Darktrace, IDS/IPS systems, and various vulnerability scanners.

• Skilled in automation and scripting using PowerShell, JSON, and Bicep for infrastructure provisioning and security operations.

• Experience managing penetration testing and red teaming activities.

• Proven ability to develop and enforce enterprise-level security policies and governance frameworks.

• Desirable certifications: DSOCP (DevSecOps Certified Professional), SC-900 (Microsoft Security, Compliance, and Identity Fundamentals), AZ-500 (Microsoft Azure Security Technologies), CISSP (Certified Information Systems Security Professional), Microsoft 365 Security certifications.

Why Join?

This is a fantastic opportunity to grow your career in a challenging, rewarding role at the intersection of finance and cybersecurity. You will be part of a dynamic, forward-thinking team that values innovation, proactive security measures, and continuous learning. The role offers a competitive salary, bonus opportunities, and a chance to work on cutting-edge cloud security technologies within a major financial institution.