Engineer III - DevSec

Reposted Yesterday
Be an Early Applicant
Bengaluru, Bengaluru Urban, Karnataka, IND
Hybrid
Senior level
Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
We are curious, inventive, perceptive and approachable.
The Role
Design and implement secure applications and DevSecOps pipelines on Azure. Perform secure coding, code reviews, vulnerability assessments, threat modeling, IAM implementation, monitoring, and mentor junior engineers while collaborating with DevOps and security teams.
Summary Generated by Built In
Position: Engineer III - DevSecOps (6 to 10 years of experience in Secure Application Development & Azure Security Engineering)
Job Summary:
We are seeking a highly skilled and experienced Security Development Engineer (SecDev Engineer - III) to design, develop, and secure enterprise-grade products and solutions built on Microsoft technologies. This role demands expertise in secure software development, DevSecOps practices, and cloud security, with a strong focus on embedding security into the development lifecycle. You will play a critical role in ensuring secure, scalable, and resilient application development across our platforms.
Key responsibilities:
• Design, develop, and maintain secure applications across cloud and on-prem environments. • Implement secure coding practices and integrate security into the SDLC (DevSecOps). • Perform code reviews, vulnerability assessments, and remediation. • Build and manage secure CI/CD pipelines with integrated security controls. • Design and implement Azure cloud security controls. • Implement identity and access management (Azure AD, RBAC). • Perform threat modelling and risk assessments. • Improve monitoring and threat detection capabilities. • Collaborate with DevOps, InfraOps, and Security teams. • Mentor junior engineers and contribute to documentation. Technology skills, Competencies and Experience: Application & Security Engineering: • .NET / API / web application security experience • Secure coding practices (OWASP Top 10) • Experience with SAST, DAST tools • Strong understanding and Experience in executing a Security Software Development lifecycle • Gathering/Identifying Security and Privacy requirements • Performing Security and Privacy Risk Assessments in support of the development process• Providing guidance on controls and mitigations for reported security issues • Experience protecting sensitive data and vulnerabilities on Cloud resources • Hands-on experience with web application penetration testing • Excellent communication - verbal and written • Leadership qualities including self-accountability, work-prioritization, meeting facilitation, time management, team co-ordination
Cloud & Microsoft Stack: • Azure IaaS and PaaS services • App Services, Functions, Key Vault, Networking,Logic apps
Identity & Access Management: • Azure AD, RBAC, Conditional Access • OAuth and OpenID Connect
DevSecOps & Automation: • Azure DevOps / GitHub Actions / Jenkins • Infrastructure as Code (Terraform, ARM, Bicep)
Monitoring & Threat Detection: • Microsoft Defender, Azure Sentinel (preferred) • Log analysis and alert response
Scripting & Automation: • PowerShell • Python / Bash (preferred)
Qualification: • Bachelor's degree in Computer Science, Information Technology, or a related field.
Experience: • 6 to 10 years of overall IT experience. • 3-5 years in application security, cloud security, or DevSecOps. • Experience in enterprise product or solution development preferred. Nice to have: • Azure security certifications (AZ-500, SC-200, SC-300) • Knowledge of threat modeling frameworks (STRIDE, MITRE) • Experience in API security • Experience in GenAI related solutioning for security review • Integrate AI-enabled security tools into CI/CD pipelines to support continuous security validation
Work location: Wipfli India, Bengaluru

Skills Required

  • Bachelor's degree in Computer Science, Information Technology, or related field
  • 6 to 10 years overall IT experience
  • 3-5 years in application security, cloud security, or DevSecOps
  • .NET and Web API development experience with web application security
  • Secure coding practices and knowledge of OWASP Top 10
  • Experience with SAST and DAST tools
  • Experience executing a Security Software Development Lifecycle (SDLC)
  • Performing security and privacy risk assessments and gathering security/privacy requirements
  • Hands-on web application penetration testing experience
  • Azure cloud security experience (design and implement Azure IaaS/PaaS controls)
  • Experience with Azure services: App Services, Functions, Key Vault, Logic Apps, Networking
  • Identity and Access Management: Azure AD, RBAC, Conditional Access, OAuth, OpenID Connect
  • Build and manage secure CI/CD pipelines (Azure DevOps, GitHub Actions, Jenkins)
  • Infrastructure as Code: Terraform, ARM, Bicep
  • Monitoring and threat detection experience (Microsoft Defender)
  • Experience with Azure Sentinel
  • PowerShell scripting skills
  • Python or Bash scripting (preferred)
  • Excellent verbal and written communication, leadership and mentoring skills
  • Experience in enterprise product or solution development
  • Azure security certifications (AZ-500, SC-200, SC-300)
  • Knowledge of threat modeling frameworks (STRIDE, MITRE)
  • Experience in API security and GenAI security solutioning (nice to have)

What the Team is Saying

Ryan
Jeannie
Amanda
Kate
Luis
Dane
Ryan

Wipfli Compensation & Benefits Highlights

  • Leave & Time Off Breadth Time off is broad via flexible/unlimited PTO, paid holidays, wellness or floating days, paid volunteer time, and sabbaticals. Hybrid/remote schedules and meeting-free Wednesdays reinforce work-life flexibility.
  • Parental & Family Support Family-building supports include generous parental leave, adoption assistance, fertility and surrogacy benefits, and family medical leave. Company-hosted family events further emphasize support for families.
  • Inclusive Benefits Coverage Inclusive coverage explicitly spans transgender health care and medical travel, alongside mental health benefits and FSAs. Coverage breadth also includes pet insurance and other wellbeing options.

Wipfli Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Milwaukee, WI
3,000 Employees
Year Founded: 1930

What We Do

Wipfli is an advisory firm that delivers holistic solutions to help clients navigate the modern marketplace, optimize performance and drive growth. Our more than 3,000 full-time associates deliver digital, people, strategy, risk, financial and outsourcing solutions to 54,000+ clients. "Wipfli" is the brand name under which Wipfli LLP and Wipfli Advisory LLC and its respective subsidiary entities provide professional services. Wipfli LLP and Wipfli Advisory LLC (and its respective subsidiary entities) practice in an alternative practice structure in accordance with the AICPA Code of Professional Conduct and applicable law, regulations, and professional standards. Wipfli LLP is a licensed independent CPA firm that provides attest services to its clients, and Wipfli Advisory LLC provides tax and business consulting services to its clients. Wipfli Advisory LLC and its subsidiary entities are not licensed CPA firms.

Why Work With Us

At Wipfli, people count. Our people are core to everything we do — the catalyst behind our ability to create exceptional impact and extraordinary results. We believe in flexibility. We focus on relationships. We encourage each individual to follow their own path. And we seek feedback openly, from all.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Wipfli Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Freedom to work from anywhere! Wipfli takes a flexible approach in allowing employees to choose to be remote, hybrid, or in-office.

Typical time on-site: Not Specified
HQMilwaukee, WI
IN
Angeles, PH
Atlanta, GA
Augusta, ME
Bedford, NH
Bengaluru, IN
Billings, MT
Bozeman, MT
Company Office Image
Chicago, IL
Company Office Image
Denver, CO
Detroit, MI
Duluth, MN
Eau Claire, WI
Great Falls, MT
Green Bay, WI
Havre, MT
Helena, MT
Hyderabad, IN
Idaho Falls, ID
Irvine, CA
Kalispell, MT
La Crosse, WI
Lincolnshire, IL
Loveland, CO
Madison, WI
Middlebury, CT
Minneapolis, MN
Missoula, MT
Naperville, IL
Philadelphia, PA
Pune, IN
Radnor, PA
Reston, VA
Rockford, IL
Saint Louis, MO
Scottsdale, AZ
Siloam Springs, AR
South Portland, ME
Spokane, WA
St. Charles, MO
Sterling, IL
Tinley Park, IL
Washington, DC
Wausau, WI
Learn more

Similar Jobs

Wipfli Logo Wipfli

Analyst - US Accounting (CAS)

Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Hybrid
Bengaluru, Bengaluru Urban, Karnataka, IND
3000 Employees

Wipfli Logo Wipfli

Senior Accountant

Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Hybrid
Bengaluru, Bengaluru Urban, Karnataka, IND
3000 Employees

Wipfli Logo Wipfli

Consultant

Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Hybrid
Bengaluru, Bengaluru Urban, Karnataka, IND
3000 Employees

Wipfli Logo Wipfli

Consultant

Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Hybrid
Bengaluru, Bengaluru Urban, Karnataka, IND
3000 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account