Security Architect - L1

Req Id: 78607

City: Bengaluru

State/Province: Karnataka

Posting Start Date: 8/1/25

Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs. Leveraging our holistic portfolio of capabilities in consulting, design, engineering, and operations, we help clients realize their boldest ambitions and build future-ready, sustainable businesses. With over 230,000 employees and business partners across 65 countries, we deliver on the promise of helping our customers, colleagues, and communities thrive in an ever-changing world. For additional information, visit us at www.wipro.com.

Job Description:

Job Description

• Must have 6 years of experience in intertwining security measures within DevOps practices. You will be pivotal in bolstering the security posture by embedding robust security frameworks into CI/CD pipelines and optimizing post-scan workflows.
• Your role will support a critical mission to enhance vulnerability assessment methodologies, swiftly triage security findings, and spearhead initiatives to uplift security standards across diverse development and infrastructure environments.
• You'll get to integrate and automate security tools, such as SAST, DAST, software composition analysis, and container scanning into a seamless CI/CD process to create a culture of security-first development.
• Participating actively in the management of post-scan activities will include:

• Triage findings with a focus on risk-based prioritization for vulnerabilities.
• Collaborate with development teams to track remediation status and ensure timely resolutions.

• Required Skills & Experience:
• A minimum of 6 years experience in DevOps and Security Engineering roles, showcasing a strong foundation in both domains.
• Proficient in integrating security tools such as SonarQube, Fortify, Checkmarx, and others to create a robust security framework.
• Solid understanding of CI/CD practices using tools like Jenkins, GitLab CI, and GitHub Actions, paired with modern source control management workflows.
• Expertise in vulnerability management, understanding of CVSS scoring, and risk assessment methodologies that align with best practices.
• Experienced with widespread cloud platforms like AWS, Azure, and GCP, especially their security features and compliance landscapes.
• Familiar with container ecosystems, notably Docker and Kubernetes along with runtime scanning practices to ensure container security capabilities.