DevSecOps Engineer cloud expertise

Requirements

• 7–10 years of experience in cybersecurity and software engineering, emphasizing hands‑on penetration testing and vulnerability assessments.
• Strong proficiency in Python for tool development, automation of scans, and script‑based remediation workflows.
• Deep understanding of Azure security architecture, including configuration, identity management, network security groups, and compliance tooling.
• Proven track record of assessing and fortifying web applications and Word Press environments.
• Familiarity with industry‑standard security tools such as Burp Suite, Nessus, Metasploit, and Nmap.
• Hands‑on experience with CI/CD platforms (e.g., Git Hub Actions, Git Lab CI) and infrastructure‑as‑code frameworks (e.g., Terraform, Cloud Formation).
• Practical knowledge of SAST/DAST tools, dependency scanning solutions (e.g., Snyk, Trivy, Sonar Qube), and secrets management systems (e.g., Hashi Corp Vault, AWS Secrets Manager).
• Experience in both startup and enterprise settings, able to differentiate between impactful security measures and ineffective security theater.
• Excellent communication skills to explain technical risks to both engineering teams and non‑technical leadership.
• Current engagement with AI‑enhanced development and security tools for improved productivity.
• Familiarity with Node.js is advantageous but not essential.

• Conduct vulnerability assessments and penetration tests across web applications, networks, Azure configurations, and Word Press environments.
• Evaluate Azure's security posture by analyzing identity and access policies, network security groups, storage exposure, and compliance gaps.
• Regularly perform both automated and manual scans on websites and network infrastructure to identify vulnerabilities and misconfigurations.
• Develop and maintain Python‑based automation tools for ongoing security scans, reporting pipelines, and tracking remediation actions.
• Document assessment findings with clear severity ratings and practical remediation steps tailored to our small engineering team.
• Monitor threat intelligence and proactively evaluate emerging vulnerabilities relevant to our environment.
• Design and apply automated security scanning within our CI/CD pipeline, including SAST, DAST, dependency checks, secrets detection, and container scanning, ensuring minimal alert fatigue.
• Build and sustain infrastructure‑as‑code for secure and scalable deployments across development, staging, and production environments.
• Set secure defaults for secrets management, credential rotation, and access controls to avoid hindering developer workflow.
• Facilitate threat modeling sessions to convert findings into prioritized, automated security pipeline controls.
• Act as the team's internal security educator, helping engineers comprehend the principles behind security controls rather than only the procedures.
• Assist the team in cultivating secure coding practices that seamlessly integrate into their daily routines.
• Contribute to HIPAA and SOC 2 compliance from a hands‑on technical perspective.
• Maintain documentation of security architecture and decisions to ensure the entire team understands the rationale and trade‑offs involved.

We are a small, agile company located in Miami, FL, focusing on building a secure and efficient technology infrastructure. Our Cybersecurity & Dev Sec Ops  Engineer role is pivotal, blending proactive security measures with the agility required in fast‑paced environments. We embrace a flexible work culture, offering benefits such as health insurance, dental coverage, vision insurance, and paid time off. We value adaptability and encourage team members to engage in diverse tasks beyond their primary responsibilities.

If you thrive on solving complex challenges and enjoy a collaborative atmosphere, our team would be the perfect fit for you.