Sr Azure DevSecOps Engineer

What success looks like in this role:

DevSecOps Pipeline Automation: Design and implement secure automated CI/CD pipelines in Azure using Azure DevOps GitLab Jenkins or similar tools ensuring security integration at every stage.

• Azure Infrastructure Security: Architect and configure secure cloud infrastructure in Azure using best practices for network security identity and access management (IAM) encryption and auditing.
• Security Integration: Incorporate security tools into the development and deployment process including automated code scanning vulnerability assessments compliance checks and penetration testing.
• Continuous Monitoring & Incident Response: Implement security monitoring tools such as Azure Security Center Azure Sentinel and thirdparty security tools to detect vulnerabilities and respond to security incidents effectively.
• Automated Infrastructure as Code (IaC): Use tools like Terraform ARM templates or Azure CLI to automate the provisioning and management of secure Azure environments.
• Risk Management & Compliance: Ensure all Azurebased applications and services meet regulatory and compliance standards (e.g. GDPR SOC 2 PCIDSS) by implementing appropriate security controls continuous auditing and vulnerability management.
• Collaboration & Mentoring: Work closely with development security and operations teams to ensure seamless integration of security practices into the DevOps pipeline. Mentor and guide junior engineers in DevSecOps best practices.
• Continuous Improvement: Stay uptodate with the latest trends and advancements in Azure DevSecOps and cloud security. Proactively identify opportunities to improve security posture and operational efficiency.
• Documentation & Reporting: Maintain detailed documentation of the security architecture DevSecOps processes security configurations and incident response protocols.

#LIBN1

You will be successful in this role if you have:

Skills & Qualifications:

• Experience: 8 years of experience in DevOps with at least 5 years focused on security integration in Azure environments.
• Azure Services Expertise: Indepth knowledge of core Azure services (e.g. Azure Virtual Machines Azure Kubernetes Service Azure Active Directory Azure Storage and Networking) and securityfocused Azure tools (Azure Security Center Sentinel Key Vault).
• DevOps Tools: Handson experience with Azure DevOps GitLab Jenkins or other CI/CD tools including containerization technologies like Docker and Kubernetes particularly Azure Kubernetes Service (AKS).
• Security Tools & Practices: Strong experience with security tools such as Azure Security Center Sentinel vulnerability scanners static code analysis (e.g. SonarQube) and automated penetration testing tools.
• Infrastructure as Code (IaC): Extensive experience with infrastructure automation tools like Terraform ARM Templates or Azure CLI for secure infrastructure provisioning and management.
• Compliance & Risk Management: Expertise in implementing security controls and meeting regulatory and compliance standards (SOC 2 ISO 27001 PCIDSS GDPR etc. in the Azure cloud.
• Security Best Practices: Familiarity with implementing security best practices for cloud infrastructure including encryption (at rest and in transit) network security IAM (Azure AD) and access control policies.
• Scripting & Automation: Proficiency in scripting languages such as PowerShell Bash or Python for automating security and infrastructure tasks.
• Monitoring & Incident Response: Experience using Azure Security Center Azure Sentinel and other security monitoring tools to proactively manage and respond to security incidents.
• Communication Skills: Excellent verbal and written communication skills with the ability to explain complex security concepts to nontechnical stakeholders and provide clear documentation.

Preferred Qualifications:

• Azure Certified Security Engineer Associate or Azure Certified Solutions Architect Expert.
• Experience with container security and orchestrating containers in Azure (AKS).
• Familiarity with serverless security practices using Azure Functions and Logic Apps.
• Experience in managing multicloud environments and hybrid cloud strategies.
• Understanding of security frameworks such as OWASP NIST or CIS Benchmarks.
• Experience with continuous compliance frameworks and automated compliance monitoring tools.
• Familiarity with tools like Prisma Cloud HashiCorp Vault or Aqua Security for cloud security management.

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age blood type caste citizenship color disability family medical history family status ethnicity gender gender expression gender identity genetic information marital status national origin parental status pregnancy race religion sex sexual orientation transgender status veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein or cannot otherwise complete your expression of interest without additional assistance and would like to discuss a request for reasonable accommodation please contact our Global Recruiting organization at or alternatively Toll Free:(Prompt 4. US job seekers can find more information about Unisys EEO commitment here.