DevSecOps Engineer

Who We Are:

At Avnet, relationships matter. We are a global, FORTUNE ® 500 technology distributor and solutions company that delivers design, supply chain and logistics expertise to customers at every stage of a product’s lifecycle. Our employees have a front row seat to the latest innovations shaping the world we live in and the future we share. We’re driven to help our customers around the world succeed and we do so by earning the trust of some of the biggest names in technology.

Working at Avnet means being a part of a global team. We work collaboratively and with integrity, doing business the right way. For more than a century, we have partnered together to help our customers, suppliers and teammates realize the transformative possibilities of technology. Experience what’s next at Avnet!

*Applicants for this position must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time*

Job Summary:

We are seeking a highly autonomous and hands-on DevSecOps / Application Security Engineer to champion security integration across our global application ecosystem. This role sits at the intersection of application security, software engineering, and cloud automation.

You will be responsible for assisting in the design, implementation, and scaling of security controls throughout the Software Development Lifecycle (SDLC), primarily focusing on securing Azure-native services and driving cultural change toward secure-by-default practices among global development and architecture teams.

Principal Responsibilities:

·         Pipeline Security Automation: Design, implement, and centrally manage advanced security tooling (SAST, DAST, SCA, Secrets Management) directly within high-volume GitHub Actions and GitLab CI/CD pipelines.

·         Azure Cloud Security Engineering: Engineer and enforce security controls for our Azure-native services (e.g., AKS, Azure Functions, App Services), with a strong emphasis on Managed Identities, Azure Policy, Defender for Cloud, and securing the networking perimeter (e.g., App Gateway WAF).

·         Secure Design & Governance: Lead threat modeling sessions and security design reviews for net-new, large-scale applications. Design and operationalize security guardrails aligned with enterprise standards (OWASP API Security, NIST, PCI-DSS).

·         Vulnerability Remediation & Coaching: Drive the end-to-end vulnerability lifecycle, from discovery (e.g., coordinating with Red Teams/Bug Bounty) to defining clear, actionable security-focused remediation guidance for development teams.

·         IaC Security: Embed security checks and best practices into our Infrastructure-as-Code workflows, primarily using Terraform or Bicep.

·         Identity & Access Management: Define and implement robust access controls and key management strategies utilizing Azure Key Vault and cloud-native identity solutions.

·         Other duties as assigned​

Distinguishing Characteristics:

·         Cloud Depth: Hands-on experience securing production workloads in the Microsoft Azure ecosystem. Deep familiarity with key services like AKS, Azure Functions, App Services, and Azure Firewall/WAF.

·         CI/CD Mastery: Demonstrated expertise automating security controls (scanning, gating, posture checks) within GitHub Actions and/or GitLab CI/CD.

·         Security Knowledge: Strong, actionable knowledge of the OWASP Top 10/API Security and aligning practices to standards like NIST 800-53.

·         Automation: Proficiency in Python, PowerShell, or Bash for creating security automation, custom checks, and tool integration.

·         Tooling: Working experience with modern enterprise security tools (e.g., Snyk, Checkmarx, Prisma Cloud, GitHub Advanced Security, or ASPM platforms).

·         Container Security: Practical experience with container runtime security and posture management (e.g., Defender for Containers, Falco).

Work Experience:

·         Typically, 8+ years with bachelor's or equivalent.

Education and Certification(s):

·         Bachelor's degree or equivalent experience from which comparable knowledge and job skills can be obtained.

#LI-HYBRID

What We Offer:

Our employees work hard to live our values and help us grow. Our total rewards strategy supports Avnet’s ability to attract, engage, develop, and reward our employees, while promoting a diverse and inclusive environment. We offer competitive compensation and benefit programs — from time away and flexible working arrangements to programs supporting employee well-being and opportunities to give back to your community.

• Generous Paid Time Off

• 401K and Pension Plan

• Paid Holidays

• Family Support (Paid Leave, Surrogacy, Adoption)

• Medical, Dental, Vision, and Life Insurance

• Long-term and Short-term Disability Insurance

• Health Savings Account / Flexible Spending Account

• Education Assistance

• Employee Development Resources

• Employee Wellness, Leadership Development and Mentorship Programs

Benefits listed above may vary depending on the nature of your employment with Avnet.

This position will have access to ITAR product and therefore be authorized to access product.  This position requires the employee to be a U.S. Citizen or National, or a lawful permanent resident as defined by 8 U.S.C. 1101(a)(20), or a protected individual as defined by 8 U.S.C. 1324b(a)(3).

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills.

Avnet is an Equal Opportunity Employer committed to providing equal opportunities to all employees and applicants for employment without regard to race, color, religion, ancestry, national origin, sex (including pregnancy), age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other characteristic protected by law. This policy of non-discrimination also applies to religious dress and grooming practices. Avnet will accommodate employee religious dress standards and grooming practices that do not result in undue hardship for the Company.  If you are interested in applying for employment with Avnet and need special assistance or an accommodation to apply for a posted position contact our Human Resources Service Center at (888) 994-7669.