DevSecOps Implementation: Integrate security practices into the CI/CD pipeline using Azure DevOps, ensuring end-to-end application and infrastructure security.
Security Management: Design and implement security controls, manage identity and access, and protect data, applications, and networks in cloud environments. Respond to security incidents effectively.
Infrastructure as Code: Manage infrastructure using Terraform and ARM templates, ensuring security, scalability, and compliance with best practices.
Automation & Configuration: Automate deployment and configuration of cloud resources using tools like Ansible, Chef, or Puppet.
Compliance & Governance: Ensure regulatory compliance using Azure Policy and Blueprints for governance.
Monitoring & Logging: Set up proactive monitoring, logging, and alerting using Azure Monitor, Security Center, and Sentinel to maintain system security and health.
Collaboration: Work closely with development, operations, and security teams, promoting security awareness and providing training on secure coding and DevSecOps practices.
Azure Expertise: Deep experience with Azure services, including Azure DevOps, Security Center, Sentinel, Monitor, and ARM templates. Strong knowledge of Azure networking, identity management, and security best practices.
DevSecOps Practices: Proven ability to integrate security into CI/CD pipelines with experience in tools like SAST, DAST, SCA, and RASP.
Automation & Scripting: Proficiency in PowerShell, Bash, or Python with experience in automation tools like Terraform, Ansible, Chef, or Puppet.
Security & Compliance: Strong knowledge of security frameworks (ISO 27001, NIST, CIS) and regulatory compliance (GDPR, HIPAA).
Monitoring & Incident Response: Experience with security monitoring and incident response using Azure Security Center, Sentinel, and other SIEM tools.
Relevant certifications such as:
Microsoft Certified
Microsoft Certified: DevOps Engineer Expert
Azure Security Engineer Associate
Certified Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
or similar are highly desirable.