DevSecOps Engineer
- Infyshine Inc.
1 Days Ago
NA
C2C
Boston-MA
8-10 Years
Required Skills: DevOps, Cyber Security, ASM, Application Security, AWS, Azure, Terraform, Ansible, Kubernetes
Job Description
Role Descriptions:
DevSecOps / Software Supply Chain Security Engineer
DevSecOps / Software Supply Chain Security Engineer
Role Overview
The State Street Cyber Security Architecture & Engineering team is seeking a highly skilled DevSecOps / Software Supply Chain Security Engineer to support enterprise rollout of secure software delivery practices. This role focuses on securing the software supply chain across CI/CD pipelines| artifact management| and dependency ecosystems.
Key Responsibilities:
Design and implement software supply chain security strategies
Secure artifact sourcing from Maven| PyPI| and internal registries
Manage Artifactory and artifact governanceEnsure artifact provenance| immutability| and integrity
Integrate security into CI/CD pipelines
Support Chainguard implementation and trusted image pipelines
Drive DevSecOps adoption across engineering teams
Develop dashboards| metrics| and governance standards
Required Skills & Experience
8-12 years in DevOps / DevSecOpsHands-on CI/CD experience
Strong understanding of supply chain security
Experience with Artifactory/Nexus
Knowledge of SLSA principles
Container security experience (Chainguard preferred)
Cloud experience (AWS/Azure)
IaC tools (Terraform| Ansible| Kubernetes)
Essential Skills:
DevSecOps / Software Supply Chain Security Engineer
