Think Beyond The Label Jobs

Company OverviewKLA is a global leader in diversified electronics for the semiconductor manufacturing ecosystem. Virtually every electronic device in the world is produced using our technologies. No laptop, smartphone, wearable device, voice-controlled gadget, flexible screen, VR device or smart car would have made it into your hands without us. KLA invents systems and solutions for the manufacturing of wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays.  The innovative ideas and devices that are advancing humanity all begin with inspiration, research and development. KLA focuses more than average on innovation and we invest 15% of sales back into R&D. Our expert teams of physicists, engineers, data scientists and problem-solvers work together with the world's leading technology providers to accelerate the delivery of tomorrow's electronic devices. Life here is exciting and our teams thrive on tackling really hard problems. There is never a dull moment with us.

Job Description/Preferred Qualifications The Cybersecurity group at KLA is dedicated to protecting global business operations by proactively identifying threats, securing cloud and on-prem environments, and ensuring the integrity of critical systems and intellectual property. As part of our Cyber Architecture and Engineering team, we are seeking a Senior DevSecOps Architect to lead the integration of security into the software development lifecycle (SDLC), CI/CD pipelines, cloud-native applications, AI-driven chatbot systems, and data analytics platforms like Databricks.

This role will be responsible for designing and implementing security controls across DevOps workflows, cloud environments, software applications, data platforms, and AI-driven chatbots. The ideal candidate will work closely with development, cloud, IT, data engineering, and security teams to drive a security-first culture while enabling innovation and agility.What You Will Be Doing:

DevSecOps Strategy & Implementation: Define and execute a DevSecOps roadmap that integrates security into CI/CD pipelines, Kubernetes, serverless applications, and AI-driven chatbot platforms

Azure Chatbot Security: Implement secure AI and chatbot architectures in Azure, ensuring compliance with security standards, data protection, and access control.

Databricks Security & Data Protection: Secure data lakes, ML models, and Databricks notebooks by implementing role-based access control (RBAC), encryption, and compliance monitoring

Security Automation & Infrastructure as Code (IaC): Automate security controls using Terraform, Ansible, Bicep, and Azure Policy to enforce security in cloud-native deployments

Azure Key Vault & Secrets Management: Design and implement secure identity and secrets management strategies, ensuring API keys, encryption keys, and credentials are properly managed.

Digital Rights Management (DRM): Implement data protection, rights management, and access controls to ensure secure handling of intellectual property, digital assets, and sensitive data across applications and data platforms

Cloud & Container Security: Establish best practices for securing containers, Kubernetes, microservices, and serverless functions, including runtime security and policy enforcement

MITRE ATT&CK-Based Threat Modeling & Risk Management: Utilize MITRE ATT&CK techniques to enhance threat modeling, detection engineering, and security response strategies for applications, infrastructure, and data environments

Zero Trust & API Security: Enforce security controls around OAuth, SAML, JWT, Zero Trust, and API gateways to secure applications, chatbot interactions, and Databricks data pipelines

Security Monitoring & Incident Response: Leverage MITRE ATT&CK tactics to design threat hunting, detection, and response strategies using SIEM, XDR, and threat intelligence tools

Compliance & Governa