DevSecOps Engineer III

Posted:
7/12/2026, 9:05:19 PM

Location(s):
Karnataka, India ⋅ Bengaluru, Karnataka, India

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
IT & Security

Workplace Type:
Remote

Farnell

Farnell, an Avnet company, is a global high-service distributor of technology products, services and solutions for electronic system design, maintenance and repair.

Principal Responsibilities:

·         Pipeline Security Automation: Design, implement, and centrally manage advanced security tooling (SAST, DAST, SCA, Secrets Management) directly within high-volume GitHub Actions and GitLab CI/CD pipelines.

·         Azure Cloud Security Engineering: Engineer and enforce security controls for our Azure-native services (e.g., AKS, Azure Functions, App Services), with a strong emphasis on Managed Identities, Azure Policy, Defender for Cloud, and securing the networking perimeter (e.g., App Gateway WAF).

·         Secure Design & Governance: Lead threat modeling sessions and security design reviews for net-new, large-scale applications. Design and operationalize security guardrails aligned with enterprise standards (OWASP API Security, NIST, PCI-DSS).

·         Vulnerability Remediation & Coaching: Drive the end-to-end vulnerability lifecycle, from discovery (e.g., coordinating with Red Teams/Bug Bounty) to defining clear, actionable security-focused remediation guidance for development teams.

·         IaC Security: Embed security checks and best practices into our Infrastructure-as-Code workflows, primarily using Terraform or Bicep.

·         Identity & Access Management: Define and implement robust access controls and key management strategies utilizing Azure Key Vault and cloud-native identity solutions.

·         Other duties as assigned​

Distinguishing Characteristics:

·         Cloud Depth: Hands-on experience securing production workloads in the Microsoft Azure ecosystem. Deep familiarity with key services like AKS, Azure Functions, App Services, and Azure Firewall/WAF.

·         CI/CD Mastery: Demonstrated expertise automating security controls (scanning, gating, posture checks) within GitHub Actions and/or GitLab CI/CD.

·         Security Knowledge: Strong, actionable knowledge of the OWASP Top 10/API Security and aligning practices to standards like NIST 800-53.

·         Automation: Proficiency in Python, PowerShell, or Bash for creating security automation, custom checks, and tool integration.

·         Tooling: Working experience with modern enterprise security tools (e.g., Snyk, Checkmarx, Prisma Cloud, GitHub Advanced Security, or ASPM platforms).

·         Container Security: Practical experience with container runtime security and posture management (e.g., Defender for Containers, Falco).

Work Experience:

·         Typically, 5+ years with bachelor's or equivalent.

Education and Certification(s):

·         Bachelor's degree or equivalent experience from which comparable knowledge and job skills can be obtained.

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills.

Avnet

Website: https://www.avnet.com/

Headquarter Location: Phoenix, Arizona, United States

Employee Count: 10001+

Year Founded: 1921

IPO Status: Public

Industries: Electrical Distribution ⋅ Electronics ⋅ Hardware ⋅ Internet of Things ⋅ Software ⋅ Supply Chain Management

Visa Sponsorship: Sponsors work visas