DevSecOps Lead – Cloud Security

Posted via LinkedIn Recruiter (not a company profile)

Posted 4 days ago

Apply Now

Resume Score

Check how well your resume matches this job before you apply.

Sign in to check score

About the role

  • Develop and automate compliance validation frameworks across multi-cloud environments, integrating AI-powered testing solutions for a major banking organization.

Responsibilities

  • Design, develop, and maintain AI-driven automated test frameworks for cloud compliance policies across GCP, Azure, and AWS environments. Implement AI-based test environments using Azure Foundry and Azure ML for realistic cloud mock setups, including network and IAM configurations. Use Azure AI Search, Azure OpenAI, and Azure Machine Learning to build intelligent routines for policy compliance prediction and remediation recommendations. Develop comprehensive positive, negative, and edge case tests to validate policy enforcement logic. Maintain a library of test suites and ensure traceability between compliance requirements and validation artifacts. Collaborate with policy developers, security architects, and cloud service owners to understand expected behaviors and failure scenarios. Integrate AI-assisted compliance validation into CI/CD pipelines using GitHub Actions and workflows with scripting efficiencies from GitHub Copilot. Automate security scans and validation of terraform deployments with Python scripts. Embed automated compliance checks in DevSecOps workflows, validating enforcement of banking cloud security policies. Work with security, DevSecOps, and governance teams to define, enforce, and validate cloud security controls aligned with industry standards such as NIST, ISO 27001, and SOC 2. Implement and test logging and monitoring solutions for real-time compliance violation detection. Automate the generation and validation of compliance reports using tools like SonarQube, Wiz.IO, Splunk, Dynatrace, and AppOmni for audit readiness.

Requirements

  • 8+ years of experience in Cloud Security, DevSecOps, AI, or Cloud Engineering roles. 3+ years in technical leadership positions. Strong expertise in GCP, Azure, and AWS cloud environments. Proficiency with Jira and Confluence. Skilled in Python development. Experience with CI/CD pipelines. Proficient in Terraform and Infrastructure as Code tools. Excellent written and verbal communication skills. Strong interpersonal skills and ability to work independently or within a team. Demonstrated attention to detail and self-motivation. Nice to Have: Cloud or DevSecOps engineering certifications. Experience with container security and Kubernetes policy enforcement. Hands-on knowledge of HashiCorp Sentinel, Azure Policy, Wiz Policy, GCP Organization Policy, Open Policy Agent, or Kubernetes. Familiarity with Helm, ARM, JSON, YAML, and Rego. Prior experience working in banking or financial institutions.

Job type

Contractor

Experience level

SeniorLead

Salary

Not specified

Degree requirement

No Education Requirement

Tech skills

GCPAzureAWSPythonTerraformGitHub ActionsAzure FoundryAzure MLAzure AI SearchAzure OpenAIAzure Machine LearningJiraConfluenceSonarQubeWiz.IOSplunkDynatraceAppOmniKubernetesHashiCorp SentinelAzure PolicyWiz PolicyGCP Organization PolicyOpen Policy AgentHelmARMJSONYAMLRego

Location requirements

Linkedin Recruiter PostTorontoOntario Toronto

Report this job

Found something wrong with the page? Please let us know by submitting a report below.