Remote Director of DevSecOps

We are seeking a strategic, hands-on Remote Director of DevSecOps to unify DevOps, Security, and Platform Engineering into a single high-performing function. This role is responsible for building a secure, scalable, and compliant software delivery ecosystem supporting mission-critical healthcare and EDI platforms within a Microsoft Azure environment.

This leader will embed security into every phase of the software lifecycle while enabling engineering teams to deliver high-quality, compliant software at speed.

Key Responsibilities

DevSecOps Strategy & Platform Engineering

• Define and execute the enterprise DevSecOps vision across DevOps, Security, and Platform Engineering
• Build secure, self-service platform standards for CI/CD, infrastructure provisioning, and environment consistency
  
  

Security, Governance & Compliance

• Lead cloud, application, and DevSecOps security practices
• Embed HIPAA, SOC 2, and HITRUST controls into engineering workflows
• Enforce zero-trust, security guardrails, and continuous compliance in partnership with Legal and Risk teams
• Champion shift-left and secure-by-design principles
  
  

Secure SDLC & Cloud Architecture

• Implement SAST, DAST, SCA, container, and IaC security controls
• Establish secure patterns for PHI and sensitive healthcare data
• Lead DevOps and security architecture across Microsoft Azure using Bicep, Terraform, and ARM
• Enforce identity, access management, encryption, and secrets management standards
  
  

CI/CD, Automation & Observability

• Own GitHub Actions and Azure DevOps CI/CD ecosystems
• Automate security scanning, policy enforcement, compliance evidence, and release workflows
• Establish monitoring, logging, alerting, and SRE-aligned reliability practices
• Lead incident response, root cause analysis, and operational metrics improvement (MTTR, deployment frequency)
  
  

Operations, ITSM & Support

• Own platform operations, SLAs, incident workflows, and on-call structure
• Optimize ITSM processes using Freshservice and Freshdesk
• Drive continuous improvement through support analytics and post-incident learnings
  
  

Required Qualifications

• 8 years in DevOps, DevSecOps, Security, or Platform Engineering
• 5 years in technical leadership
• Deep hands-on experience with Microsoft Azure, GitHub Actions, Azure DevOps, and Infrastructure as Code
• Strong expertise in HIPAA, SOC 2, HITRUST, and regulated healthcare environments
  
  

Preferred Qualifications

• Healthcare interoperability experience
• Audit and risk assessment support
• Experience with Freshservice/Freshdesk