DevSecOps Engineer

Senior DevSecOps Engineer
Location: Herndon, VA
Long Term
 

Senior DevSecOps Engineer with deep expertise in Azure, .NET Core, Angular, and microservices architecture.
In this pivotal role, you will lead the integration of security throughout the development lifecycle—enabling secure software delivery through automation, cloud-native controls, and proactive risk mitigation strategies.
You’ll be part of a multidisciplinary team that builds resilient, secure, and scalable solutions in a fast-paced environment serving mission-critical applications.

Responsibilities will include but are not limited to:

• Design, implement, and secure CI/CD pipelines using Azure DevOps, GitHub Actions, or similar tools.
   
• Integrate security testing tools (SAST, DAST, SCA, container scanning) into build and release processes.
   
• Automate compliance validation, secrets management, and vulnerability mitigation workflows.
   
• Collaborate with development teams to enforce secure coding best practices in .NET Core, Angular, and microservices deployments.
   
• Implement Infrastructure-as-Code (IaC) security controls using Terraform, Bicep, or ARM templates.
   
• Apply Azure-native security controls (NSGs, Defender for Cloud, Azure Policy, RBAC).
   
• Secure containerized workloads in Azure Kubernetes Service (AKS) or Azure Container Apps.
   
• Harden APIs and ingress points using WAFs, Azure API Management, and Cloudflare.
   
• Integrate telemetry into Microsoft Sentinel, Azure Monitor, or Splunk for security visibility.
   
• Create security dashboards to track KPIs and monitor vulnerabilities.
   
• Support security incident detection, investigation, response, and forensic activities.
   
• Conduct threat modeling, architecture reviews, and security assessments.
   
• Define security guardrails and reusable templates for development and deployment.
   
• Champion secure SDLC principles and deliver security awareness training to DevOps and development teams.
   

What You’ll Need:
 

• 5+ years of experience in .NET Core, C#, Angular (v12+), and microservices development.
   
• Deep understanding of CI/CD, application security (OWASP Top 10, API security), and container security.
   
• Hands-on with tools such as SonarQube, Checkmarx, Aqua, Trivy, Snyk, or equivalents.
   
• Proficiency in managing Azure-native services (App Services, Key Vault, Azure Front Door, etc.).
   
• Expertise in Terraform, Bicep, or ARM templates for infrastructure automation.
   
• Experience with Policy-as-Code (OPA/Conftest) and Kubernetes security constructs.
   
• Familiar with Helm charts and K8s networking policies.
   

Set Yourself Apart With:
 

• Certifications: Azure DevOps (AZ-400), Azure Security (AZ-500), or Microsoft Cybersecurity Architect (SC-100).
   
• Experience implementing Zero Trust Architecture and identity-based security.
   
• Hands-on with edge security and integration using Cloudflare and API Gateway platforms.
  
   

Thanks & Best Regards,
Prasad
AB Tech Solutions
Prasad.t@abtech-sol.com
P:571-581-3888 EXT- 102
Direct: 5717773138
1604 Spring Hill Road, Suite 208, Vienna, VA 22182 
www.abtech-sol.com