Lead IT DevSecOps Engineer

Cleveland-Cliffs Inc. is seeking an experiencedDevSecOpsEngineer to join our IT team. This roleis responsible fordesigning, implementing, andmaintainingautomated deployment pipelines and infrastructure with integrated security practices across our development and production environments. This position will bridge the gap between development, operations, and security, working with both modern cloud technologies and legacy systems while fostering a culture of automation and continuous improvement.Summary of ResponsibilitiesDesign, implement, andmaintainCI/CD pipelines across multiple platforms (GitHub Actions, GitLab CI/CD, Jenkins, TFS)Develop deployment automation scripts using NodeJS and C# for build, backup, and deployment processesIntegrate containerized applications with cloud platforms and manage container registriesConfigure automated workflows and orchestration processes across server environmentsAdminister Git repositories including access control, branching strategies, and workflow automationPlan and execute migrations between version control platformsDevelop andmaintainGitHub Actions and custom automation scriptsConfigure GitHub Advanced Security featuresManage application configurations, environment variables, and connection strings across environmentsAdminister development tools and DevOps infrastructureMonitor infrastructure health and proactively resolve issuesMaintain documentation of system configurations and changesConfigure andmaintainAzure API Management endpoints, policies, and security controlsManage API authentication, authorization, and access controlsDeploy and configure Azure App ServicesMaintain log aggregation systems that collect and store production logs for analysis and troubleshootingMonitor andmaintainDevOps tooling, automation scripts, and infrastructure componentsPerform system administration tasks and resolve infrastructure issues proactivelyTrack system changes andmaintaindocumentation of configurationsConfigure and manage GitHub Advanced Security features including code scanning and secret detectionImplement security best practices across deployment pipelines and infrastructureIntegrate security scanning tools into CI/CD workflows (SAST/DAST)Ensure secure API communication and implement access controls across network infrastructureMonitor security vulnerabilities and coordinate remediation effortsMaintain security policies, authentication mechanisms, and authorization controlsMinimumQualificationsBachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience)8+ years of experience in DevOps,DevSecOps, or platform engineering rolesStrong scripting and programming skills (NodeJS, C#, Python, or similar)Hands-on experience with CI/CD tools (Jenkins, GitHub Actions, GitLab CI/CD)Proficiencywith Git and repository managementExperience with containerization technologies (Docker, Kubernetes)Working knowledge of cloud platforms (Azure, AWS, or GCP)Understanding of API gateway configuration and security best practicesStrong understanding of networking, security principles, and access controlStrong problem-solving abilities and troubleshooting skillsPreferred QualificationsExperience with Azure ecosystem (APIM, App Services, DevOps)Familiarity with .NET applications and supporting legacy systemsKnowledge of monitoring and observability tools (Prometheus, Grafana, ELK stack)Experience with Infrastructure as Code (Terraform, ARM templates)Experience with security scanning tools (SAST/DAST, dependency scanning)Knowledge of vulnerability management and remediation processesUnderstanding of compliance framewor

Created: 2026-01-13