DevSecOps Engineer – Identity & Access Management

Job Description

The DevSecOps Engineer is crucial for integrating security into the DevOps lifecycle, focusing on identity and access management (IAM) using Microsoft Entra ID. This role involves designing and implementing secure automation pipelines, enforcing least-privilege and Zero Trust access controls, and managing enterprise identity governance to meet organizational and regulatory needs. The ideal candidate will also have experience with GCP pipeline deployment, infrastructure-as-code (IaC), and custom agent development to enhance cloud security observability and policy enforcement.

Qualifications

1. Leverage Entra technologies to strengthen identity protection, automate governance, and modernize access strategies. 2. Automate identity and security configuration using scripting and IaC tools like Terraform and Ansible for Azure and GCP. 3. Develop secure, automated pipelines on the GCP platform for continuous compliance validation and vulnerability scanning. 4. Integrate security tooling into CI/CD pipelines using GCP Cloud Build and GitHub Actions. 5. Implement and manage Microsoft Entra ID security controls, including Conditional Access and Privileged Identity Management. 6. Evaluate new features in Microsoft Entra ID and GCP IAM to improve enterprise DevSecOps workflows. 7. Build and maintain custom security agents to enhance identity telemetry and enforce real-time access policies. 8. Conduct regular reviews of roles and permissions to ensure least-privilege access and Zero Trust alignment. 9. Collaborate with engineering teams on secure code reviews and threat modeling. 10. Develop dashboards and reports for identity compliance and IAM security posture.

Benefits

- Strong technical, troubleshooting, and strategical skills to build emerging technology solutions at scale. - 3-6+ years of experience in DevOps, SecOps, or Cloud Security Engineering roles. - Strong hands-on experience with Microsoft Entra ID. - Lead GCP cloud deployments and build scalable, secure automation pipelines. - Experience with IaC: Terraform, Bicep, or ARM templates. - Knowledge of container security, Kubernetes, and cloud-native security patterns. - Solid understanding of Zero Trust principles, IAM, and identity lifecycle management. - Familiarity with vulnerability management tools and SAST/DAST integrations - Microsoft Azure certifications are a strong plus.