DevSecOps Engineer (Identity & Access)

Location: 100% Remote from EU

Requirement: European Nationality Required

Assignment Objectives

The primary focus of this mission is to modernize and secure the management of Conditional Access Policies (CAP) across three distinct Microsoft Entra ID tenants. You will transition manual policy management into a secure, automated "Policy as Code" framework.

Key Tasks & Responsibilities

• Policy Audit: Conduct a comprehensive analysis of current security policies across three Entra ID tenants.

• Automation & IaC: Develop specialized Terraform modules and Azure DevOps pipelines to automate the deployment and management of policies.

• Operational Transition: Prepare a robust framework for the hand-off of Conditional Access Policy operations from the current engineering team to the Cyber Security team.

• Maintenance & Optimization: Handle troubleshooting, implement new policies, and continuously improve existing security configurations to align with Zero Trust principles.

Candidate Requirements

Mandatory Qualifications

• Education: Bachelor’s degree in Computer Science or a related field. (In lieu of a degree, 3+ years of equivalent professional experience is accepted).

• Languages: * English: Advanced (Level C1)

  • French: Recommended/Preferred (Level B2)

Mandatory Experience

• Cloud Security: 3+ years as a Cloud Security Specialist (specific focus on Entra ID Conditional Access, Azure, and/or AWS).

• Infrastructure as Code: 2+ years of hands-on experience with Terraform.

• DevOps: 2+ years of experience building and managing CI/CD pipelines using Azure DevOps Services.

Preferred Technical Skills

• Identity Governance: Deep expertise in managing Entra ID Conditional Access Policies.

• Scripting & Querying: Proficiency in Python or PowerShell, and query languages such as KQL (Azure Log Analytics), Splunk, or SQL.

• Documentation: Ability to create clear technical documentation for the final transition to the Cyber Security team.