Software Development Engineer 3

Kforce has a client that is seeking a Software Development Engineer 3 in Redmond, WA.

Summary:We are looking for a Software Development Engineer to support and enhance the security posture and compliance readiness of CELA's cloud-based services hosted in Azure and Power Platform. This role involves conducting detailed security and risk assessments, driving remediation activities, analyzing compliance telemetry, and leveraging automation to scale secure engineering practices. The ideal candidate brings strong technical expertise, a passion for proactive risk management, and the ability to partner across teams to ensure consistent, compliant, and resilient solutions.

Key Responsibilities:

• Perform in-depth security and risk assessments for services deployed on Azure and Power Platform
• Document risks in the Risk Register, ensuring accurate linkage to corresponding remediation actions
• Collaborate with engineering teams to track progress on risk mitigation and ensure closure
• Provide technical guidance and hands-on remediation support, including dedicated office hours
• Capture and standardize remediation steps, building reusable guidance for future scenarios
• Analyze security and compliance datasets using tools like Azure Data Explorer (Kusto) to surface insights and summarize risk impact
• Leverage automation to streamline risk tracking, compliance validation, and remediation workflows
• Support and participate in security and compliance campaigns, aligning efforts with corporate and division-wide priorities
• Track and manage assigned work via Azure DevOps, providing timely updates and clear documentation* Bachelor's degree in Computer Science, Software Engineering, or a related technical discipline
• CISSP certification or equivalent (e.g., SANS GIAC certifications)
• 5-7 years of relevant industry experience in security engineering, compliance, or cloud risk management
• 5+ years of hands-on experience with Azure, including familiarity with its security architecture and services
• 3+ years of experience in security assessments, threat modeling, and risk analysis
• 1+ year of experience in risk management, with working knowledge of NIST CSF v2 or other relevant control frameworks
• Experience using Azure Data Explorer (Kusto) for compliance and security telemetry analysis
• Experience with automation tools (e.g., PowerShell, Azure Logic Apps, CI/CD integration, scripting) to enhance compliance and risk workflows
• Strong understanding of web application security, threats, and mitigation strategies
• Excellent communication, collaboration, and analytical skills
• Demonstrated ability to provide security and compliance support across multiple teams

Preferred Qualifications:

• Experience with secure code reviews and static/dynamic analysis tools
• Hands-on experience securing Power Platform, including Canvas Apps and Dataverse
• Familiarity with compliance automation frameworks or platforms (e.g., Azure Policy, Microsoft Purview)