DevSecOps Engineer
Hybrid · London, England, United Kingdom
Job Summary
DevSecOps Engineer role focused on securing Azure-based cloud infrastructure, AKS and application workloads. Responsibilities include embedding security into cloud architectures, automating security controls, maintaining secure IaC with Terraform, integrating automated security checks into Azure DevOps CI/CD pipelines, enforcing Kubernetes security best practices (RBAC, network policies, secrets management, image security, ingress), configuring secure Azure VM deployments, managing container vulnerability scanning, monitoring CVEs, reviewing Terraform modules, container images and Helm charts for misconfigurations, maintaining monitoring and incident response capabilities with Datadog/Azure Monitor, supporting 24/7 rotations, ensuring governance and compliance with identity, encryption and least privilege principles, managing secrets with Azure Key Vault and Kubernetes secrets, and driving continuous security improvements across AKS, VM workloads, and CI/CD processes.
Required Qualifications
- Experience with Azure security including networking, RBAC, managed identities, logging and monitoring
- Kubernetes security including network policies, RBAC, image security, secrets, ingress security
- Terraform and Terraform-security concepts (policies, modules, scanning tools)
- Azure DevOps CI/CD pipelines, YAML, secure build pipelines, artifact management
- Container security/hardening, image optimisation, multi-stage builds, secure base images
- Trivy or similar vulnerability scanners, dependency scanning, SAST/DAST tools
- Scripting with Python, Bash, or PowerShell for automation
- Git workflows with security-focused practices
- Knowledge of WAF, API security, OWASP Top 10 and cloud-security frameworks
- WAF rules management, tuning and monitoring
- SSL/TLS configuration and certificate lifecycle management
- Experience with Cloudflare security features including WAF, SSL, and Zero Trust
- Security governance and compliance in cloud environments
- Experience supporting audits, documentation, and risk assessments
- Strong communication and collaboration abilities
- Ability to translate security requirements into practical engineering tasks
- Ability to operate in 24/7 support rotations if required
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.