Sr Azure DevSecOps Engineer

What success looks like in this role:

DevSecOps Pipeline Automation: Design and implement secure, automated CI/CD pipelines in Azure using Azure DevOps, GitLab, Jenkins, or similar tools, ensuring security integration at every stage.

• Azure Infrastructure Security: Architect and configure secure cloud infrastructure in Azure using best practices for network security, identity and access management (IAM), encryption, and auditing.
• Security Integration: Incorporate security tools into the development and deployment process, including automated code scanning, vulnerability assessments, compliance checks, and penetration testing.
• Continuous Monitoring & Incident Response: Implement security monitoring tools such as Azure Security Center, Azure Sentinel, and third-party security tools to detect vulnerabilities and respond to security incidents effectively.
• Automated Infrastructure as Code (IaC): Use tools like Terraform, ARM templates, or Azure CLI to automate the provisioning and management of secure Azure environments.
• Risk Management & Compliance: Ensure all Azure-based applications and services meet regulatory and compliance standards (e.g., GDPR, SOC 2, PCI-DSS) by implementing appropriate security controls, continuous auditing, and vulnerability management.
• Collaboration & Mentoring: Work closely with development, security, and operations teams to ensure seamless integration of security practices into the DevOps pipeline. Mentor and guide junior engineers in DevSecOps best practices.
• Continuous Improvement: Stay up-to-date with the latest trends and advancements in Azure, DevSecOps, and cloud security. Proactively identify opportunities to improve security posture and operational efficiency.
• Documentation & Reporting: Maintain detailed documentation of the security architecture, DevSecOps processes, security configurations, and incident response protocols.

#LI-BN1

You will be successful in this role if you have:

Skills & Qualifications:

• Experience: 8+ years of experience in DevOps, with at least 5 years focused on security integration in Azure environments.
• Azure Services Expertise: In-depth knowledge of core Azure services (e.g., Azure Virtual Machines, Azure Kubernetes Service, Azure Active Directory, Azure Storage, and Networking) and security-focused Azure tools (Azure Security Center, Sentinel, Key Vault).
• DevOps Tools: Hands-on experience with Azure DevOps, GitLab, Jenkins, or other CI/CD tools, including containerization technologies like Docker and Kubernetes, particularly Azure Kubernetes Service (AKS).
• Security Tools & Practices: Strong experience with security tools such as Azure Security Center, Sentinel, vulnerability scanners, static code analysis (e.g., SonarQube), and automated penetration testing tools.
• Infrastructure as Code (IaC): Extensive experience with infrastructure automation tools like Terraform, ARM Templates, or Azure CLI for secure infrastructure provisioning and management.
• Compliance & Risk Management: Expertise in implementing security controls and meeting regulatory and compliance standards (SOC 2, ISO 27001, PCI-DSS, GDPR, etc.) in the Azure cloud.
• Security Best Practices: Familiarity with implementing security best practices for cloud infrastructure, including encryption (at rest and in transit), network security, IAM (Azure AD), and access control policies.
• Scripting & Automation: Proficiency in scripting languages such as PowerShell, Bash, or Python for automating security and infrastructure tasks.
• Monitoring & Incident Response: Experience using Azure Security Center, Azure Sentinel, and other security monitoring tools to proactively manage and respond to security incidents.
• Communication Skills: Excellent verbal and written communication skills, with the ability to explain complex security concepts to non-technical stakeholders and provide clear documentation.

Preferred Qualifications:

• Azure Certified Security Engineer Associate or Azure Certified Solutions Architect Expert.
• Experience with container security and orchestrating containers in Azure (AKS).
• Familiarity with serverless security practices using Azure Functions and Logic Apps.
• Experience in managing multi-cloud environments and hybrid cloud strategies.
• Understanding of security frameworks such as OWASP, NIST, or CIS Benchmarks.
• Experience with continuous compliance frameworks and automated compliance monitoring tools.
• Familiarity with tools like Prisma Cloud, HashiCorp Vault, or Aqua Security for cloud security management.

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, blood type, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein, or cannot otherwise complete your expression of interest, without additional assistance and would like to discuss a request for reasonable accommodation, please contact our Global Recruiting organization at GlobalRecruiting@unisys.com or alternatively Toll Free: 888-560-1782 (Prompt 4).  US job seekers can find more information about Unisys’  EEO commitment here.