Principal Software Engineer - DevSecOps
Boomi
About Boomi and What Makes Us Special
Are you ready to work at a fast-growing company where you can make a difference? Boomi aims to make the world a better place by connecting everyone to everything, anywhere. Our award-winning, intelligent integration and automation platform helps organizations power the future of business. At Boomi, you’ll work with world-class people and industry-leading technology. We hire trailblazers with an entrepreneurial spirit who can solve challenging problems, make a real impact, and want to be part of building something big. If this sounds like a good fit for you, check out boomi.com or visit our Boomi Careers page to learn more.
What you’ll achieve
As a Senior DevSecOps Engineer, you will lead the design, automation, and implementation of cloud security initiatives across AWS and Azure environments. You will integrate advanced IAM management, key rotation, vulnerability remediation, and secure CI/CD practices that directly contribute to strengthening Boomi’s security posture. Your expertise will guide teams through cloud misconfiguration remediation, privilege management, secrets management, and the integration of cutting-edge DevSecOps tooling to deliver secure and scalable systems.
Role and Responsibilities
Lead remediation of cloud misconfigurations flagged by CSPM tools (CrowdStrike CSPM, Upwind) and drive adoption of tools like Stacklet for configuration management.
Drive encryption key upgrades and secrets management automation using AWS KMS, Secrets Manager, or Azure Key Vault.
Develop plans and tooling integrations for Okta PAM JIT, support secure remote access, and guide BeyondTrust EPM enhancements.
Integrate security controls into CI/CD pipelines (Jenkins, GitLab, Azure DevOps), including SAST/DAST automation (Snyk).
Define and enforce best practices for AWS IAM cleanup, account audits, and least privilege enforcement.
Support secure logging, detection engineering, and incident response integrations with SIEM tools like SumoLogic.
Lead threat modeling sessions, develop detection libraries, and integrate them into the SDLC.
Drive container and Kubernetes security best practices including image scanning and policy enforcement.
Collaborate on AI governance improvements, including secure AI deployment and threat modeling for AI systems.
Technical Must-Know Concepts
AWS/Azure Security: IAM, KMS, GuardDuty, Security Center, Stacklet, Okta PAM.
DevSecOps Tooling: Jenkins, GitLab CI/CD, Snyk, TruffleHog, Terraform.
Vulnerability Management: CrowdStrike CSPM, Snyk, container scanning.
Secrets Management: AWS Secrets Manager, Azure Key Vault, HashiCorp Vault.
Compliance Standards: NIST, ISO 27001, SOC 2.
Threat Modeling: STRIDE, DREAD.
AI Security: AI governance frameworks, LLM guard deployment.
Be Bold. Be You. Be Boomi. We take pride in our culture and core values and are committed to being a place where everyone can be their true, authentic self. Our team members are our most valuable resources, and we look for and encourage diversity in backgrounds, thoughts, life experiences, knowledge, and capabilities.
All employment decisions are based on business needs, job requirements, and individual qualifications.
Boomi strives to create an inclusive and accessible environment for candidates and employees. If you need accommodation during the application or interview process, please submit a request to talent@boomi.com. This inbox is strictly for accommodations, please do not send resumes or general inquiries.