PW – Cloud DevOps Engineer – Job6474

Summary

We are seeking a highly skilled and experienced Senior Cloud DevOps Engineer to join our dynamic team. This pivotal role focuses on designing, implementing, and managing robust security policies and automation frameworks within cloud environments, primarily leveraging Microsoft Azure and Google Cloud Platform (GCP). The ideal candidate will play a critical role in enhancing our organization’s security posture by integrating security best practices into our software development lifecycle, developing secure CI/CD pipelines, and performing continuous security assessments. This position demands a proactive leader who can collaborate effectively across departments, mentor junior engineers, and stay ahead of emerging cloud security trends.

Responsibilities

• Architect and enforce comprehensive security policies tailored for cloud environments, ensuring compliance with industry standards and organizational requirements.
• Lead initiatives to secure cloud infrastructure on Azure and Google Cloud Platform, including identity and access management, network security, encryption, and threat detection.
• Manage and secure containerized applications using Docker and Kubernetes, implementing best practices for container lifecycle management, vulnerability scanning, and runtime protection.
• Develop and maintain automation scripts primarily in Python to streamline security operations, infrastructure provisioning, and configuration management.
• Build and maintain secure, scalable, and efficient CI/CD pipelines using Azure DevOps, integrating security checks and controls throughout the software delivery process.
• Security Integration in SDLC: Collaborate closely with development teams to embed security practices into the software development lifecycle, including code reviews, static and dynamic analysis, and vulnerability management.
• Security Monitoring and Assessment: Utilize security monitoring tools to perform regular security assessments, identify vulnerabilities, and respond to incidents promptly.
• Cross-Departmental Collaboration: Work alongside product managers, developers, QA, and compliance teams to ensure security requirements are met and risks are mitigated.
• Mentorship and Leadership: Provide guidance and mentorship to junior engineers, fostering a culture of continuous learning and security awareness.
• Continuous Learning: Stay current with the latest cloud security trends, tools, and best practices, and proactively recommend improvements to the organization’s security posture.

Requirements

Must-Have Skills

• Cloud Security Engineering: Deep expertise in securing cloud environments, including designing and implementing security controls, managing identity and access, and ensuring compliance within Azure and Google Cloud Platform.
• Azure: Proficient in Microsoft Azure services, including Azure Active Directory, Azure Security Center, Azure Key Vault, and Azure DevOps, with hands-on experience in deploying and securing cloud resources.
• Google Cloud Platform (GCP): Strong knowledge of GCP services such as IAM, Cloud Security Command Center, Cloud Functions, and Kubernetes Engine, with practical experience in securing workloads on GCP.
• Docker: Skilled in containerization concepts and Docker technology, including image creation, management, and security best practices to ensure container integrity.
• Kubernetes: Expertise in orchestrating containerized applications using Kubernetes, with a focus on securing clusters, managing role-based access control (RBAC), network policies, and vulnerability scanning.
• Python: Advanced proficiency in Python scripting for automation of security tasks, infrastructure as code, and integration with cloud APIs and DevOps tools.
• Rego Query Language: Experience with Rego, the policy language for Open Policy Agent (OPA), to define and enforce fine-grained security policies across cloud and container environments.
• Azure DevOps: Hands-on experience in building and managing CI/CD pipelines using Azure DevOps, integrating automated security testing and compliance checks.
• CI/CD: Strong understanding of continuous integration and continuous deployment methodologies, with the ability to embed security controls and automate testing within pipelines.
• Security Monitoring Tools: Familiarity with security monitoring and logging tools to detect, analyze, and respond to security incidents in cloud environments.
• Scripting: Proficiency in scripting languages, primarily Python, to automate repetitive tasks, manage configurations, and enhance security operations.
• Automation: Demonstrated ability to design and implement automation frameworks that improve efficiency, reduce human error, and enforce security policies consistently.

Nice-to-Have Skills

• Bash: Experience with Bash scripting for automation and system administration tasks in Linux-based environments.
• PowerShell: Knowledge of PowerShell scripting to automate tasks and manage Windows-based cloud resources.
• AWS: Familiarity with Amazon Web Services (AWS) cloud platform and its security services, providing a broader cloud security perspective.
• PaaS Services: Understanding of Platform as a Service (PaaS) offerings and their security implications within cloud ecosystems.
• WIZ: Experience with WIZ or similar cloud security posture management tools to enhance visibility and compliance.
• Go: Basic knowledge of Go programming language, useful for contributing to cloud-native security tools and automation.
• Security Certifications: Relevant certifications such as AWS Certified Security – Specialty, Azure Security Engineer Associate, CISSP, or CISM that validate expertise in cloud security and governance.