DevSecOps (Azure)

DevOps Security Specialist (Azure)

Mindtech is your gateway to exciting and impactful tech projects. We specialize in end-to-end software outsourcing, linking Latin American talent with global opportunities. Our fast, cost-effective approach ensures that our clients receive exceptional service and innovative solutions. With a diverse team of over 70 skilled professionals across Latin America and the US, we are committed to delivering software that drives success.

Position Overview:

The Infrastructure and Software Security Specialist is responsible for ensuring end-to-end security of systems, from infrastructure to applications, aligned with modern cybersecurity standards. This role includes implementing advanced policies, configurations and tools to prevent vulnerabilities and ensure environments are resilient to threats. You will collaborate with technical teams to integrate security into all stages of the systems development and operation lifecycle.

Key Responsibilities:

- Design and configure secure architectures in Azure using tools such as Azure Defender for Cloud, Azure Policy and Azure Advisor.

- Implement and manage WAF (Web Application Firewall) in Application Gateway or Azure Front Door to protect web applications.

- Detect and mitigate vulnerabilities in software according to OWASP Top 10 standards (injections, XSS, CSRF, etc.).

- Implement DevSecOps strategies using tools such as SonarQube, Trivy, Hadolint, Checkov and GitHub Advanced Security (GHAS).

- Perform threat modeling and penetration testing using OWASP ZAP, Burp Suite and simulations of attacks such as DDoS or MITM.

- Design secure containers with Docker and manage Kubernetes security using policies such as PodSecurityPolicy or OPA, and configuration of secure Ingress Controllers.

- Integrate and manage monitoring tools such as Azure Monitor and Grafana to monitor security logs and generate real-time alerts.

- Collaborate with cross-functional teams to ensure effective implementation of security solutions.

Desired Skills & Qualifications:

- Minimum 5 years of experience in software and/or infrastructure security related roles.

- Experience in security auditing and compliance projects.

- Proven knowledge in attack simulations, penetration testing and risk mitigation.

- Secure Infrastructure:

Advanced experience in Azure security configuration, including Azure Defender, Azure Policy and secure virtual networks (NSG, UDR).

Knowledge in WAF configuration in Application Gateway or Azure Front Door.

- Software Security:

Validation of standards such as OAuth 2.0, OpenID Connect and JWT.

Vulnerability mitigation based on OWASP Top 10.

Knowledge of security analysis and integration testing tools such as SonarQube, Trivy, and Checkov.

- Containerization and Microservices:

Secure configuration of Docker and Kubernetes containers, including YAML manifest design and use of OPA.

Implementation of policies and secure gateway controllers such as Istio or Application Gateway.

- Monitoring and Response:

Experience integrating monitoring and response tools such as Azure Monitor and Grafana.Scalability and optimization with Azure Advisor.