Job Description

Location: Work is what you do, not where you go. For this role, we are open to remote work and can hire anywhere in the United States or Canada.About the opportunityWe are seeking an Azure Cloud DevSecOps Engineer to integrate security practices into our cloud infrastructure and DevOps processes. The ideal candidate will secure cloud-native applications and infrastructure while enabling rapid development and deployment in a secure environment. This role involves collaborating with cross-functional teams to build, monitor, and maintain secure cloud solutions.What youll get to doCloud Security Implementation:

• Design and implement secure cloud environments in platforms in Azure/AWS ensuring adherence to best practices.
• Develop and enforce cloud security policies, IAM configurations, and network security controls (e.g., firewalls, security groups).
• Conduct risk assessments, threat modeling, and vulnerability management for cloud workloads.

DevSecOps Pipeline Integration:

• Automate security checks in CI/CD pipelines using tools like Prisma Cloud, SonarQube, and Checkov
• Integrate SAST, DAST, and container security scans into development workflows.
• Ensure Infrastructure as Code (IaC) templates (e.g., Terraform, Ansible,DSC) meet security and compliance standards.

Container Image Management:

• Implement and maintain secure container image repositories.
• Ensure container images are scanned for vulnerabilities using tools like Trivy or Prisma Cloud.
• Establish policies for image signing, versioning, and secure deployment practices.
• Work with development teams to adopt best practices for containerization, including minimizing attack surfaces and ensuring compliance with security standards.

Compliance and Governance:

• Ensure cloud environments comply with regulatory frameworks (e.g., GDPR, HIPAA, ISO 27001).
• Maintain cloud security certifications and documentation.

Collaboration and Training:

• Work closely with development and operations teams to implement secure coding practices and build security-first cloud-native solutions.
• Lead workshops and training sessions on cloud security and DevSecOps methodologies.

Skills and experience we value

• Bachelors degree in Computer Science, Information Technology, or a related field or equivalent experience
• 5+ years of experience in cloud infrastructure, DevOps, or security roles, with at least 2 years in cloud security or DevSecOps.
• Proficiency with Azure/AWS and their native security tools.
• Experience with IaC tools (Terraform, Ansible, DSC) and securing IaC workflows.
• Strong knowledge of security tools like Checkov, SonarCube or Prisma Cloud.
• Expertise in container security (e.g., Docker, Kubernetes).
• Experience with container image scanning and secure image management practices.
• Familiarity with tools like Artifactory for container and artifact management.
• Familiarity with scripting languages (Python, Bash, or PowerShell).
• Knowledge of compliance frameworks such as CIS Benchmarks, PCI DSS, or NIST.

What would make you really stand out

• Certifications: Azure Security Engineer, or Certified Kubernetes Security Specialist (CKS).
• Experience with GitOps tools like ArgoCD or FluxCD.
• Understanding of microservices and serverless security.

Ceridian