Boomi Logo

Boomi

Principal Software Engineer – DevSecOps

Reposted 4 Days Ago
Be an Early Applicant
India
Senior level
India
Senior level
Lead cloud security initiatives in AWS and Azure, integrating security practices into CI/CD pipelines and managing vulnerabilities and secrets for DevSecOps.
The summary above was generated by AI

About Boomi and What Makes Us Special

Are you ready to work at a fast-growing company where you can make a difference? Boomi aims to make the world a better place by connecting everyone to everything, anywhere. Our award-winning, intelligent integration and automation platform helps organizations power the future of business. At Boomi, you’ll work with world-class people and industry-leading technology. We hire trailblazers with an entrepreneurial spirit who can solve challenging problems, make a real impact, and want to be part of building something big. If this sounds like a good fit for you, check out boomi.com  or visit our Boomi Careers page to learn more.

What you’ll achieve

As a Senior DevSecOps Engineer, you will lead the design, automation, and implementation of cloud security initiatives across AWS and Azure environments. You will integrate advanced IAM management, key rotation, vulnerability remediation, and secure CI/CD practices that directly contribute to strengthening Boomi’s security posture. Your expertise will guide teams through cloud misconfiguration remediation, privilege management, secrets management, and the integration of cutting-edge DevSecOps tooling to deliver secure and scalable systems.

Role and Responsibilities
  • Lead remediation of cloud misconfigurations flagged by CSPM tools (CrowdStrike CSPM, Upwind) and drive adoption of tools like Stacklet for configuration management.

  • Drive encryption key upgrades and secrets management automation using AWS KMS, Secrets Manager, or Azure Key Vault.

  • Develop plans and tooling integrations for Okta PAM JIT, support secure remote access, and guide BeyondTrust EPM enhancements.

  • Integrate security controls into CI/CD pipelines (Jenkins, GitLab, Azure DevOps), including SAST/DAST automation (Snyk).

  • Define and enforce best practices for AWS IAM cleanup, account audits, and least privilege enforcement.

  • Support secure logging, detection engineering, and incident response integrations with SIEM tools like SumoLogic.

  • Lead threat modeling sessions, develop detection libraries, and integrate them into the SDLC.

  • Drive container and Kubernetes security best practices including image scanning and policy enforcement.

  • Collaborate on AI governance improvements, including secure AI deployment and threat modeling for AI systems.

Technical Must-Know Concepts
  • AWS/Azure Security: IAM, KMS, GuardDuty, Security Center, Stacklet, Okta PAM.

  • DevSecOps Tooling: Jenkins, GitLab CI/CD, Snyk, TruffleHog, Terraform.

  • Vulnerability Management: CrowdStrike CSPM, Snyk, container scanning.

  • Secrets Management: AWS Secrets Manager, Azure Key Vault, HashiCorp Vault.

  • Compliance Standards: NIST, ISO 27001, SOC 2.

  • Threat Modeling: STRIDE, DREAD.

  • AI Security: AI governance frameworks, LLM guard deployment.


Be Bold. Be You. Be Boomi. We take pride in our culture and core values and are committed to being a place where everyone can be their true, authentic self. Our team members are our most valuable resources, and we look for and encourage diversity in backgrounds, thoughts, life experiences, knowledge, and capabilities.  

All employment decisions are based on business needs, job requirements, and individual qualifications.

Boomi strives to create an inclusive and accessible environment for candidates and employees. If you need accommodation during the application or interview process, please submit a request to [email protected]. This inbox is strictly for accommodations, please do not send resumes or general inquiries. 

Top Skills

AWS
Azure
Azure Key Vault
Crowdstrike Cspm
Gitlab
Iam
Jenkins
Kms
Snyk
Terraform

Similar Jobs

An Hour Ago
In-Office
Bangalore, Bengaluru Urban, Karnataka, IND
Senior level
Senior level
Fintech • Legal Tech • Software • Financial Services • Cybersecurity • Data Privacy
The Senior Systems Analyst will develop, test, and upgrade products using .NET technologies, maintain applications, and contribute to team optimization and development techniques.
Top Skills: AngularAsp.NetBlazorBootstrapC#CSSEntityJavaScriptMicrosoft .Net CoreReactSQLWebapi
An Hour Ago
In-Office
Bangalore, Bengaluru Urban, Karnataka, IND
Mid level
Mid level
Fintech • Legal Tech • Software • Financial Services • Cybersecurity • Data Privacy
The Fund Accountant will manage accounting for private equity funds, handle investor commitments, and prepare NAV workbooks while interacting with clients.
Top Skills: Accounting PrinciplesExcelFinancial Modeling SoftwareFinancial Reporting Tools
An Hour Ago
In-Office
Bangalore, Bengaluru Urban, Karnataka, IND
Mid level
Mid level
Fintech • Legal Tech • Software • Financial Services • Cybersecurity • Data Privacy
The Fund Accountant will manage complex fund structures, process capital activities, compute management fees, and handle investor reporting while collaborating with clients.
Top Skills: Capital MarketsFinancial ModelingFinancial ServicesPrivate Equity Accounting

What you need to know about the Pune Tech Scene

Once a far-out concept, AI is now a tangible force reshaping industries and economies worldwide. While its adoption will automate some roles, AI has created more jobs than it has displaced, with an expected 97 million new roles to be created in the coming years. This is especially true in cities like Pune, which is emerging as a hub for companies eager to leverage this technology to develop solutions that simplify and improve lives in sectors such as education, healthcare, finance, e-commerce and more.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account