DevSecOps Engineer (Azure)

TL;DR

DevSecOps Engineer (Azure): Embedding security into engineering and cloud delivery pipelines with an accent on automation of security controls across CI/CD and cloud workloads. Focus on implementing SAST/DAST/SCA scanners, securing Kubernetes clusters, and uplifting secure-by-design practices.

Location: Nicosia, Cyprus

Company

hirify.global provides enterprise data management solutions to the global investment community, powering trillions in assets under management.

What you will do

• Integrate security controls into CI/CD pipelines using Azure DevOps, GitHub Actions, or Jenkins.
• Implement automated SAST, SCA, DAST, and container scanning, alongside secrets management.
• Collaborate with development and infrastructure teams to embed threat modelling and secure coding practices.
• Engineer and maintain tooling for vulnerability management across code, containers, and cloud workloads.
• Automate security guardrails for Azure resources, Kubernetes clusters, and API gateways.
• Review architecture changes to ensure all security requirements are addressed.

Requirements

• Experience in DevOps or platform engineering with a strong security mindset.
• Hands-on experience with at least one CI/CD platform, preferably Azure DevOps.
• Solid understanding of application security principles, such as OWASP Top 10 and SANS/CWE Top 25.
• Proficiency with infrastructure as code tools like Terraform, ARM/Bicep, or Helm.
• Knowledge of cloud security (preferably Azure) and container security best practices.
• Ability to collaborate across multiple technical teams and translate risk into engineering terms.

Nice to have

• Experience with Kubernetes (AKS), service mesh, and container runtime security.
• Integration of security telemetry into SIEM/SOAR pipelines.
• Exposure to Zero Trust design principles.
• Experience with threat modelling and automated security testing frameworks.

Culture & Benefits

• Commitment to diversity and inclusion throughout the business.
• Opportunities for career progression, training, and professional development.
• Opportunity to work with industry-leading technology for global institutional investors.