Senior DevSecOps Engineer

We are seeking a highly experienced Senior DevSecOps Engineer to support the design, development, deployment, and ongoing operations of Platform Services within an Azure Landing Zone (LZ) environment. This role focuses on building secure, compliant, and fully automated cloud platform capabilities for regulated financial-services workloads.

The ideal candidate is a hands-on consultant with strong expertise in Azure cloud engineering, Kubernetes, DevSecOps, and automation, and is comfortable operating in security-first, multi-region cloud environments.

• Design, build, and deploy Azure Landing Zone (LZ) platform and workload pipelines.

• Implement Infrastructure-as-Code (IaC) templates that enforce enterprise standards, governance, and compliance.

• Ensure platform readiness for regulated financial workloads.

• Build and maintain CI/CD pipelines using GitHub Actions and/or Azure DevOps.

• Support Java application build pipelines using Maven and Gradle.

• Automate Docker image builds, vulnerability scanning, and publishing.

• Deploy applications to AKS using Helm charts or Kubernetes manifests.

• Integrate automated security controls including SAST, container scanning, policy compliance, and approval workflows.

• Develop automation scripts using Linux shell, Python, and PowerShell.

• Design, deploy, monitor, and support Kubernetes (AKS) and container platforms.

• Configure networking and security components for containerized workloads.

• Build monitoring dashboards, workbooks, and alerts.

• Support incident response, perform root-cause analysis, and automate remediation workflows.

• Strong expertise in Azure Cloud Platform Engineering, including Azure Landing Zone design and implementation.

• Hands-on experience with DevSecOps practices, integrating security controls into CI/CD pipelines.

• Proven ability to build and maintain CI/CD pipelines using GitHub Actions and/or Azure DevOps.

• Solid experience with Kubernetes (AKS) and container-based application deployments.

• Strong knowledge of Infrastructure as Code (IaC) using Terraform or ARM/Bicep templates.

• Experience with Docker image build, scanning, and publishing workflows.

• Hands-on scripting and automation using Linux shell, Python, and PowerShell.

• Strong understanding of cloud networking and security concepts in enterprise environments.

• Experience with operations monitoring, alerting, incident response, and root-cause analysis.

• Ability to create and maintain technical design documentation and architecture presentations.

• Azure (Landing Zone, AKS, networking, security)

• Kubernetes, Docker, Helm

• GitHub Actions / Azure DevOps

• Maven, Gradle

• Linux, Python, PowerShell

• Security scanning tools (SAST, container scanning, policy enforcement)

• Comfortable working in regulated, high-control financial environments

• Strong automation mindset with security-first approach

• Able to collaborate with platform, security, and operations teams

• Proactive problem solver with strong documentation and communication skills