Skip to content
SecRoles
Back to jobs

DevSecOps / Azure Architect

Blue Pearl PTY LTDJohannesburg, GP, South AfricaMay 28, 2026
On-site
Contract
DevSecOps

We are seeking a highly skilled DevSecOps / Azure Architect to lead the design, implementation, and governance of secure, cloud-native architectures on Microsoft Azure. This role will be instrumental in driving secure DevOps practices, infrastructure automation, and enterprise-grade API platform modernization, with a strong focus on Azure API Management (APIM).

The ideal candidate combines deep Azure architecture expertise with strong DevSecOps capabilities, ensuring security by design, scalability, resilience, and operational excellence across enterprise environments.


Key Responsibilities

Azure Architecture & Cloud Design

  • Design secure, scalable, and highly available Azure architectures.

  • Lead cloud migration initiatives from on-premise and legacy platforms to Azure.

  • Architect solutions using Azure API Management, App Services, Azure Functions, AKS, Service Bus, and related Azure services.

  • Implement multi-region architectures, high availability, and disaster recovery strategies.

  • Define Azure landing zones and governance models aligned with enterprise and security standards.


DevSecOps Implementation

  • Implement DevSecOps practices across CI/CD pipelines.

  • Integrate security controls throughout build, test, and deployment workflows.

  • Automate infrastructure provisioning using Infrastructure as Code (Bicep, ARM, Terraform).

  • Embed security tooling including SAST, DAST, container scanning, and dependency vulnerability checks.

  • Implement secure release management and controlled environment promotion strategies.


Security Architecture & Compliance

  • Design and implement zero-trust security architecture patterns.

  • Configure and manage secure API gateway policies using Azure API Management.

  • Implement OAuth 2.0, OpenID Connect, and Azure AD (Entra ID) authentication and authorization models.

  • Ensure compliance with OWASP API Security Top 10 standards.

  • Manage certificate lifecycle, mTLS configurations, and Azure Key Vault integration.

  • Define and maintain cloud security posture management practices.


Automation & CI/CD

  • Architect and manage CI/CD pipelines using Azure DevOps and/or GitHub Actions.

  • Implement blue-green and canary deployment strategies.

  • Enable automated policy validation and governance for APIs.

  • Design pipeline governance models, approval gates, and compliance controls.



Monitoring & Observe

  • Implement monitoring and observe solutions using Azure Monitor, Log Analytics, and Application Insights.

  • Define enterprise logging, tracing, and alerting strategies.

  • Enable proactive anomaly detection, performance monitoring, and SLA tracking.



Requirements

Technical Skills – Mandatory

Azure Expertise

  • Azure API Management (architecture and policy configuration)

  • Azure AD / Entra ID

  • Azure App Services and Azure Functions

  • Azure Kubernetes Service (AKS) – preferred

  • Azure Key Vault

  • Azure Networking (VNet, NSG, Private Endpoints)

Security & DevSecOps

  • Proven DevSecOps implementation experience

  • CI/CD pipeline security and governance

  • SAST and DAST tool integration

  • Identity and access management

  • Secure coding and API security best practices

  • API security frameworks and standards

Automation & Platform Engineering

  • Azure DevOps and/or GitHub Actions

  • Infrastructure as Code (Bicep, ARM, Terraform)

  • YAML-based pipeline configuration

  • Containerisation using Docker (Kubernetes preferred)


Engagement Details

  • Contract Period: 10 March 2026 – 31 December 2026

  • Work Model: Onsite

  • Location: Johannesburg

  • Industry: Telecommunications



Job Details

Tools & Tech

Active Directory
AKS
Azure
Azure Monitor
Bicep
Docker
Entra ID
GitHub
GitHub Actions
Kubernetes
Terraform
Vault
Apply