Job Title: DevSec Ops Engineer
Location: Toronto, ON (Hybrid)
Estimated Duration: 12 Months
We are seeking a highly skilled DevSecOps Engineer to join our team. The successful candidate will be responsible for integrating security practices into our DevOps processes, ensuring that applications and infrastructure are secure, compliant, and resilient. This role requires strong expertise in cloud environments, automation, and modern security practices, with the ability to collaborate across development, operations, and security teams. Experience in Azure is Must, as Primary Cloud is Azure.
Key Responsibilities
Security Integration
oEmbed security controls into CI/CD pipelines and software development lifecycle.
oImplement automated security testing (SAST, DAST, dependency scanning).
oEnsure secure coding practices and vulnerability remediation.
•Cloud & Infrastructure Security
oDesign and enforce security policies for cloud-native environments (AWS, Azure ).
oManage secrets, certificates, and identity/access management.
oImplement Infrastructure as Code (IaC) with security guardrails.
•Monitoring & Incident Response
Deploy and manage security monitoring tools (SIEM, SOAR, IDS/IPS).
oInvestigate and respond to security incidents.
oContinuously improve detection and response capabilities.
•Compliance & Governance
oEnsure adherence to regulatory standards (ISO 27001, SOC2, GDPR, HIPAA).
oConduct regular audits and risk assessments.
oDocument and maintain security policies and procedures.
•Collaboration & Enablement
oPartner with developers, cloud engineers, and operations teams to promote DevSecOps culture.
oProvide training and guidance on secure development practices.
oAct as a subject matter expert for application and infrastructure security.
Required Skills & Qualifications
•Strong knowledge of DevOps tools (Jenkins, GitLab CI/CD, Azure DevOps, GitHub Actions).
•Experience with cloud platforms (AWS, Azure) and container security (Docker, Kubernetes).
•Proficiency in Infrastructure as Code (Terraform, Ansible, Helm).
•Hands-on experience with security tools (SonarQube, OWASP ZAP, HashiCorp Vault, Aqua, Prisma Cloud).
•Familiarity with SIEM/SOAR solutions (Splunk, Azure Sentinel, ELK).
•Strong understanding of networking, firewalls, and identity management.
•Relevant certifications preferred:
oCertified DevSecOps Professional
oMicrosoft/AWS/Azure Security Engineer Associate
oCISSP, CISM, or equivalent.
The pay range that the employer reasonably expects to pay for this position is between CA$80.00 and CA$100.00
Our voluntary benefits offering includes medical, dental, vision and retirement benefits.
Applications will be accepted on an ongoing basis.
Tundra Technical Solutions would like to thank you for the interest you have demonstrated in this opportunity. However, only candidates with the required skills will be contacted.
Tundra Technical Solutions is an Equal Opportunity/Affirmative Action Employer. We welcome and encourage diversity in our workplace.
Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!
Tundra Technical Solutions is among North America’s leading providers of Information Technology and Engineering staffing and consulting services. Our success and our clients’ success are built on a foundation of service excellence. Rather than continually trying to sell to new clients and companies and simply filling databases with candidates, we focus on developing stronger relationships and deeper knowledge of our existing clients’ challenges and opportunities.
Open ears. Open minds. Open futures