Job Title: DevSec Ops Engineer
Location: Toronto, ON (Hybrid)
Estimated Duration: 12 Months
We are seeking a highly skilled DevSecOps Engineer to join our team. The successful candidate will be responsible for integrating security practices into our DevOps processes, ensuring that applications and infrastructure are secure, compliant, and resilient. This role requires strong expertise in cloud environments, automation, and modern security practices, with the ability to collaborate across development, operations, and security teams. Experience in Azure is Must, as Primary Cloud is Azure.
Key Responsibilities
Security Integration
oEmbed security controls into CI/CD pipelines and software development lifecycle.
oImplement automated security testing (SAST, DAST, dependency scanning).
oEnsure secure coding practices and vulnerability remediation.
•Cloud & Infrastructure Security
oDesign and enforce security policies for cloud-native environments (AWS, Azure ).
oManage secrets, certificates, and identity/access management.
oImplement Infrastructure as Code (IaC) with security guardrails.
•Monitoring & Incident Response
Deploy and manage security monitoring tools (SIEM, SOAR, IDS/IPS).
oInvestigate and respond to security incidents.
oContinuously improve detection and response capabilities.
•Compliance & Governance
oEnsure adherence to regulatory standards (ISO 27001, SOC2, GDPR, HIPAA).
oConduct regular audits and risk assessments.
oDocument and maintain security policies and procedures.
•Collaboration & Enablement
oPartner with developers, cloud engineers, and operations teams to promote DevSecOps culture.
oProvide training and guidance on secure development practices.
oAct as a subject matter expert for application and infrastructure security.
Required Skills & Qualifications
•Strong knowledge of DevOps tools (Jenkins, GitLab CI/CD, Azure DevOps, GitHub Actions).
•Experience with cloud platforms (AWS, Azure) and container security (Docker, Kubernetes).
•Proficiency in Infrastructure as Code (Terraform, Ansible, Helm).
•Hands-on experience with security tools (SonarQube, OWASP ZAP, HashiCorp Vault, Aqua, Prisma Cloud).
•Familiarity with SIEM/SOAR solutions (Splunk, Azure Sentinel, ELK).
•Strong understanding of networking, firewalls, and identity management.
•Relevant certifications preferred:
oCertified DevSecOps Professional
oMicrosoft/AWS/Azure Security Engineer Associate
oCISSP, CISM, or equivalent.
The pay range that the employer reasonably expects to pay for this position is between CA$80.00 and CA$100.00
Our voluntary benefits offering includes medical, dental, vision and retirement benefits.
This posting is for an existing vacancy.If you believe this post to be fraudulent, please report by clicking here
Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!
Tundra Technical Solutions is among North America’s leading providers of Staffing and Consulting Services. Our success and our clients’ success are built on a foundation of service excellence. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other legally protected characteristics. We welcome and encourage diversity in the workplace.