Key Responsibilities
- Design and implement security controls within CI/CD pipelines, primarily using Azure DevOps
- Embed security scanning tools (e.g., DAST) into build and release workflows to identify vulnerabilities early
- Develop automation scripts (PowerShell, Python) to enforce security policies and reduce manual effort
- Partner with platform and infrastructure teams to improve pipeline architecture and security posture
- Drive adoption of "secure by design" principles across engineering teams
- Support alignment with governance and compliance frameworks (e.g., NIST, ISO)
Requirements
- 5+ years of experience in DevOps, DevSecOps, or platform engineering
- Hands-on experience with CI/CD pipelines and repository management (Azure DevOps preferred)
- Experience integrating security tooling into pipelines (DAST, scanning tools, policy enforcement)
- Strong scripting skills (PowerShell, Python) for automation and pipeline enhancement
- Deep understanding of the software development lifecycle (SDLC) and secure development practices