×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Cloud Computing Systems Engineer Security Manager

Senior DevSecOps Engineer

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: Purple Drive LLC
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Cloud Computing, Systems Engineer, Security Manager
Salary/Wage Range or Industry Benchmark: 200000 - 250000 USD Yearly USD 200000.00 250000.00 YEAR
Job Description & How to Apply Below

Location: Boston, MA

Employment Type: Full-Time

Experience: 10+ Years (Overall IT), 3-7+ Years in Security/Dev Sec Ops

Job Summary

We are seeking a Senior Dev Sec Ops  / Application Security Engineer to embed security across the software development lifecycle (SDLC) and cloud-native environments
. This role will focus on integrating security into CI/CD pipelines
, cloud infrastructure
, containers/Kubernetes
, and automation frameworks
, ensuring scalable, compliant, and secure delivery of applications.

The ideal candidate has strong hands‑on experience in application security, cloud security, Dev Sec Ops  practices, and security automation
, and thrives in a highly collaborative engineering environment.

Key Responsibilities
Secure SDLC & Application Security

Embed security controls across all phases of the SDLC
.

Perform threat modeling, secure code reviews, and risk assessments
.

Implement and manage SAST, DAST, and SCA tools
, and guide development teams on remediation.

Enforce secure coding standards and promote a security‑first engineering culture.

Design, build, and maintain secure CI/CD pipelines using tools such as Git Hub Actions, Git Lab CI, Jenkins, and Azure Dev Ops
.

Automate security scanning, policy enforcement, and compliance checks within pipelines.

Integrate secrets management and environment hardening into CI/CD workflows.

Review and secure Infrastructure as Code (IaC) using Terraform, Cloud Formation, ARM, or Pulumi
.

Enforce cloud security best practices across AWS, Azure, and/or Google Cloud Platform
.

Deploy and manage cloud‑native security services such as AWS Guard Duty, Azure Defender, and Google Cloud Platform Security Command Center (SCC).

Build and manage secure container images and implement vulnerability scanning using tools like Trivy, Aqua, Clair, or Prisma Cloud
.

Enforce Kubernetes security controls
, including RBAC, network policies, and pod security standards.

Monitor Kubernetes clusters and remediate security vulnerabilities.

Security Automation & Tooling

Develop automation scripts and workflows using Python, Bash, Go, or Power Shell
.

Integrate SIEM/SOAR platforms with CI/CD and cloud environments.

Automate vulnerability management and remediation processes.

Compliance & Governance

Support compliance initiatives aligned with NIST, ISO 27001, SOC 2, PCI-DSS
, and internal security policies.

Implement policy-as-code using tools such as OPA, Conftest, and cloud policy engines
.

Produce audit‑ready documentation, metrics, and security reports.

Integrate security telemetry into CI/CD pipelines and cloud platforms.

Respond to and triage security incidents related to applications, pipelines, and cloud workloads.

Conduct root‑cause analysis and implement preventive security controls.

Required Skills & Qualifications

10+ years of overall IT experience, with 3-7+ years in Cybersecurity, Dev Sec Ops , or Cloud Security roles
.

Strong scripting and programming skills (
Python, Go, Bash, or Power Shell
).

Hands‑on experience securing CI/CD pipelines
.

Deep understanding of OWASP Top 10, CWE, CVEs
.

Strong experience with container and Kubernetes security
.

Knowledge of microservices, APIs, and distributed systems
.

Solid understanding of cloud networking, IAM, secrets management, and encryption
.

Experience with
AWS, Azure, or Google Cloud Platform security services
.

Nice-to-Have Skills

Experience with
SIEM/SOAR platforms
.

Exposure to multi‑cloud security environments.

Prior experience supporting regulated or compliance‑heavy environments.

Soft Skills

Strong collaboration and communication skills.

Ability to influence engineering teams on security best practices.

Proactive mindset with strong problem‑solving abilities.

About Purple Drive Technologies LLC

Founded in 2007, Purple Drive started as a tech solutions firm and has grown into a full‑service consulting and talent partner. We help businesses navigate complex technology challenges while connecting top professionals with career‑defining opportunities.

We believe in transforming businesses through smart IT solutions and empowering technologists to grow their expertise through challenging projects and meaningful partnerships. Built on over 20 years of trusted relationships, we create success stories for both our clients and the talented professionals who drive innovation forward.

#J-18808-Ljbffr
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search