DevSecOps Engineer (Detection Pipeline Security)

TL;DR

DevSecOps Engineer (Detection & Pipeline Security): Managing secure CI/CD pipelines and threat detection logic in high-compliance environments with an accent on Shift Left principles, container validation, and detection deployment. Focus on hardening Azure DevOps workflows, integrating SAST/DAST scans, and automating detections into Microsoft Sentinel.

Location: Remote (USA only, must work EST, U.S. Citizen only)

Company

hirify.global develops authorized platforms for high-security, compliance-driven environments supporting FedRAMP, FISMA, and CMMC.

What you will do

• Manage Detections as Code lifecycle using KQL/Sigma, Git version control, and automated pipelines.
• Harden Azure DevOps pipelines, agents, and CI/CD workflows for software and detections.
• Secure Azure Container Registry, scan/patch containers for STIG compliance.
• Integrate Shift Left security: SAST, DAST, compliance scans into build pipelines.
• Automate deployment of detection content and hunting queries with SOC and Threat Intelligence teams.
• Build secure CI/CD templates, YAML pipelines, and secrets management; provide audit evidence.

Requirements

• U.S. Citizen only; must work EST timezone
• Prior DevSecOps or Security Engineering experience with both DevOps and security background
• 3–5+ years managing CI/CD pipelines in cloud-native environments (Azure DevOps preferred)
• Hands-on with Docker, Kubernetes in secure setups; Azure Kubernetes Service (AKS), Azure Container Registry
• Advanced Azure DevOps, Microsoft Sentinel/KQL; integrate security tools (SAST/DAST, IaC)
• Strong knowledge of FedRAMP, CMMC, FISMA compliance in SDLC

Nice to have

• Microsoft Certified: DevOps Engineer Expert (AZ-400)
• Microsoft Certified: Azure Security Engineer Associate (AZ-500)
• SC-200 or Kubernetes Security Specialist (CKS)

Culture & Benefits

• Collaborate closely with engineering and SOC teams in high-security environment
• Equal Employment Opportunity employer