Blanc Labs is a preferred partner for global enterprises looking to digitize and automate their operations and build their next-generation digital products and services.
Our successful engagement has powered our Enterprise client to accelerate their digital services and drive adoption and customer growth.
We are looking for a seasoned Senior DevOps / Cloud Security Engineer with deep expertise in Microsoft Azure to design, secure, and optimize cloud infrastructure for mission-critical systems. This is an incredible opportunity for someone passionate about building secure, scalable, and automated cloud environments while shaping the future of DevSecOps at Blanc Labs. You’ll play a key role in enhancing our cloud security posture, optimizing CI/CD workflows, and enabling teams to deliver resilient digital solutions at scale.
What You'll be Doing
Build and manage scalable, automated Azure infrastructure powering SaaS applications (multi-instance/multi-tenant). Design, implement and maintain CI/CD pipelines for application deployments across multiple environments and clients. Apply Infrastructure-as-Code (Terraform/Bicep/ARM) to standardize and replicate environments for different clients and projects. Implement cloud security best practices—identity and access management, encryption, secure networking, key management, secrets rotation, logging, and monitoring. Harden SaaS environments by configuring Azure Defender, Sentinel, Key Vault, Azure AD, firewalls, private endpoints, WAF, and security policies. Monitor system performance, uptime, scalability, and cost; proactively optimize resources for reliability and efficiency. Establish guardrails for secure deployment of new features, integrations, and client onboarding. Conduct vulnerability assessments, penetration test remediation, and compliance alignment (SOC2, ISO27001, CIS, etc.). Troubleshoot production issues and lead post-incident reviews to continuously improve resilience and security. Collaborate with engineering, architecture, and product teams to embed DevSecOps principles across projects.
What You'll Need to be Successful
5+ years in DevOps or Cloud Engineering, with proven work on SaaS products and Azure environments. Strong hands-on experience with Azure Services (AKS, App Services, Azure AD, VNets, Key Vault, Storage, Azure Firewall, Load Balancer, App Gateway). Advanced knowledge of cloud security standards, IAM, RBAC, network segmentation, and encryption practices in Azure. Experience securing and managing multiple cloud instances/clients for SaaS environments. Strong CI/CD pipeline expertise using Azure DevOps / GitHub Actions / Jenkins. Infrastructure-as-Code expertise (Terraform / Bicep / ARM). Solid understanding of Kubernetes, Docker, container security, image scanning, and secrets management. Experience with Azure Monitor, Log Analytics, Sentinel, SIEM/SOC tools. Scripting skills in PowerShell, Bash, or Python. Familiarity with compliance frameworks (SOC2, ISO 27001, NIST, CIS Benchmarks).
What Problems You'll Solve
How can we deploy SaaS applications across multiple client environments in a secure, repeatable, and automated way? How do we ensure zero-trust principles and data isolation across multiple instances, environments, and customers? How can we proactively identify vulnerabilities, prevent misconfigurations, and monitor threats in real time? How do we enable rapid feature delivery while ensuring compliance, security, and system stability? 
