Senior Cloud Security Engineer / DevSecOps Engineer
3Core Systems , Inc
- Location
- Onsite (Carrollton, Texas)
- Employment
- Contract
- Level
- Senior Level
About the Role
3Core Systems is seeking a Senior Cloud Security Engineer/DevSecOps Engineer to lead secure cloud infrastructure deployment during a major cloud migration. The role focuses on enhancing cloud security scores, managing privileged access, and ensuring secure CI/CD pipelines.
Skills
Full job details
Role: Senior
Cloud Security Engineer/DevSecOps Engineer
Location: Carrollton, TX
Contract: 6 month C2H
Technical skills they want:
The strongest candidates should
have experience with:
· Azure cloud security
· Terraform / Infrastructure as Code
· CI/CD pipelines
· Cloud migration
· Vulnerability scanning and reporting
· Security tooling
· Azure Defender
· Entra ID
· Privileged Access Management experience would be helpful
· Delinea experience would be helpful
· SonarQube experience is relevant
· Splunk exposure is relevant
Core focus
of the role:
This person will
be heavily involved in the company’s cloud migration and will help make sure
the environment is being built securely from the start. They need someone who
can understand the broader infrastructure vision, work closely with the cloud
architect, and help deploy secure, scalable cloud infrastructure.
Key
responsibilities include:
· Supporting the cloud migration effort
· Deploying infrastructure securely
· Writing and working with Terraform/IaC
· Reviewing and securing CI/CD pipelines
· Helping ensure the cloud environment is properly
threat-hunted
· Setting up vulnerability reporting
· Reviewing cloud infrastructure for risk and
security gaps
· Improving overall cloud security score
· Supporting privileged access management
· Helping build out Entra architecture
They currently
have Delinea implemented on-prem, and while direct Delinea experience is not
necessarily mandatory, it would be valuable. Similar PAM experience with tools
like CyberArk, BeyondTrust, or Thycotic should still be relevant if the
candidate understands privileged access and identity security.
They are using
Terraform, and this person needs to understand how to write IaC, not just have
surface-level exposure.
For CI/CD, the
focus is not just building pipelines for the sake of building pipelines. They
need someone who can help make sure infrastructure is deployed securely through
the pipeline process.
First few
months / immediate problems to solve
The person
hired will likely be expected to help with:
· Full review of the current cloud infrastructure
· Improving the cloud security score
· Reviewing CI/CD pipelines
· Ensuring cloud scalability
· Supporting vulnerability reporting
· Working with the existing SonarQube setup
· Helping make sure the cloud environment is
secure, scalable, and properly monitored
They are not
looking for someone who just takes tickets or checks boxes. They need someone
who can own problems, lead the effort, and help bring structure to the
cloud/security environment.
Ideal
candidates should have a mix of:
· Cloud migration experience
· Azure security
· Terraform/IaC
· CI/CD security
· Vulnerability management
· PAM / identity security
· Security tooling
· Ability to lead and bring structure