Principal Software Engineer - Security Architect

1 Month ago • All levels • Cyber Security

Job Summary

Job Description

The job involves a hands-on Security Architect role focused on driving alignment between vulnerability management and DevSecOps, coordinating with engineering and product teams, and supporting strategic security initiatives. Key responsibilities include implementing security strategies, performing security architecture reviews, collaborating with engineering teams to adopt security tools and best practices, and driving remediation of vulnerabilities. The role also involves mentoring engineering teams and integrating learnings from evolving security threats into processes. The ideal candidate will possess deep technical expertise and strong communication skills. The company encourages diversity and inclusion. All employment decisions are based on business needs, job requirements, and individual qualifications.
Must have:
  • Secure coding practices (OWASP Top 10, CWE) for application security.
  • Experience with threat modeling using STRIDE and DREAD frameworks.
  • Strong knowledge of AWS cloud security best practices.
  • Experience with infrastructure and CI/CD security, including IaC and pipeline security.
  • Experience with vulnerability management tools like Snyk and TruffleHog.
  • Understanding of Authentication and Authorization Security: OAuth 2.0.
  • Experience with Container and Kubernetes Security.
  • Understanding of Cryptography Fundamentals: TLS/SSL, encryption standards.
  • Familiarity with Security Standards and Compliance Awareness.

Job Details

About Boomi and What Makes Us Special

Are you ready to work at a fast-growing company where you can make a difference? Boomi aims to make the world a better place by connecting everyone to everything, anywhere. Our award-winning, intelligent integration and automation platform helps organizations power the future of business. At Boomi, you’ll work with world-class people and industry-leading technology. We hire trailblazers with an entrepreneurial spirit who can solve challenging problems, make a real impact, and want to be part of building something big. If this sounds like a good fit for you, check out boomi.com  or visit our Boomi Careers page to learn more.

Position Overview

We are seeking a hands-on Security Architect to join our engineering organization. This critical role will drive alignment between vulnerability management remediation iniatives and DevSecOps, coordinate with engineering and product teams on security implementation, and support strategic security initiatives. The ideal candidate will combine deep technical expertise with strong communication skills to influence and strengthen our overall security posture across the organization.

 

Role and Responsibilities

  • Work closely with the DevSecOps team to implement security strategies and remediation plans.

  • Act as the primary engineering interface for security posture, vulnerability remediation, and secure development practices.

  • Perform hands-on security architecture reviews, threat modeling, secure code reviews, and secure design evaluations.

  • Collaborate with engineering teams to drive adoption of security tools, frameworks, and best practices.

  • Integrate security controls and checks into CI/CD pipelines and engineering workflows.

  • Contribute to Project Phoenix execution and participate in other strategic security engineering initiatives.

  • Identify, assess, prioritize, and drive remediation of vulnerabilities across application, cloud, and infrastructure environments.

  • Mentor engineering teams to adopt security-first design and implementation principles.

  • Track and respond to evolving security threats, integrating learnings into engineering processes.

 

Technical Must-Know Concepts

Candidates are expected to demonstrate strong expertise in the following areas:

  • Application Security: Secure coding practices (OWASP Top 10, CWE), secure SDLC integration.

  • Threat Modeling: STRIDE, DREAD frameworks, attack surface identification and mitigation planning.

  • Cloud Security: AWS security best practices (IAM, KMS, GuardDuty), encryption at rest and transit, cloud resource hardening.

  • Infrastructure and CI/CD Security: Security in IaC (Terraform, CloudFormation), secrets management, pipeline security integration (SAST, SCA, DAST, IaC scanning).

  • Vulnerability Management: Experience with tools like Snyk, TruffleHog, CrowdStrike CSPM or similar; prioritization and remediation of vulnerabilities.

  • Authentication and Authorization Security: OAuth 2.0, OpenID Connect, SSO security principles.

  • Container and Kubernetes Security: Image scanning, container hardening, Kubernetes RBAC, network policies.

  • Cryptography Fundamentals: Understanding TLS/SSL, encryption standards, key management practices.

  • Security Standards and Compliance Awareness: Familiarity with NIST, ISO 27001, SOC 2, PCI DSS frameworks.

  • DevSecOps Tooling: GitHub, GitLab, Bitbucket CI/CD pipelines and security automation integrations.

 

Be Bold. Be You. Be Boomi. We take pride in our culture and core values and are committed to being a place where everyone can be their true, authentic self. Our team members are our most valuable resources, and we look for and encourage diversity in backgrounds, thoughts, life experiences, knowledge, and capabilities.  

All employment decisions are based on business needs, job requirements, and individual qualifications.

Boomi strives to create an inclusive and accessible environment for candidates and employees. If you need accommodation during the application or interview process, please submit a request to talent@boomi.com. This inbox is strictly for accommodations, please do not send resumes or general inquiries. 

Similar Jobs

Rippling - Customer Support Specialist, Payroll

Rippling

United States (Remote)
7 Months ago
Gearbox - Senior Gameplay Programmer

Gearbox

Frisco, Texas, United States (On-Site)
7 Months ago
Tesla - Parts Advisor

Tesla

Timișoara, Timiș, Romania (On-Site)
4 Months ago
MiQ - Account Manager - China

MiQ

Guangzhou, Guangdong Province, China (Hybrid)
2 Months ago
Ansys - Systems Administrator II

Ansys

Canonsburg, Pennsylvania, United States (On-Site)
1 Month ago
Lionsgate - Manager, IT Security GRC

Lionsgate

Santa Monica, California, United States (On-Site)
1 Month ago
CAE - Information Systems Security Engineer

CAE

Orlando, Florida, United States (On-Site)
1 Month ago
Crowd Strick - Platform Security Operations Engineer II

Crowd Strick

Romania (Remote)
1 Month ago
Varonis  - Junior Security Analyst

Varonis

Morrisville, North Carolina, United States (On-Site)
2 Months ago
Anavation - Cyber Threat Analyst

Anavation

Reston, Virginia, United States (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Simcorp - Senior Software Engineer

Simcorp

Noida, Uttar Pradesh, India (Hybrid)
4 Weeks ago
Rackner - Business Development & Capture Associate

Rackner

(Remote)
1 Month ago
Jane Street - Linux Engineer

Jane Street

London, England, United Kingdom (On-Site)
1 Month ago
BioFire - Associate Staff Scientist

BioFire

Hazelwood, Missouri, United States (On-Site)
1 Month ago
Testronic - LQA Game Tester with French

Testronic

Poland (Remote)
3 Weeks ago
Simcorp - Senior IT Internal Auditor

Simcorp

Manila, Metro Manila, Philippines (Hybrid)
1 Month ago
Marsh McLennan - Senior Analyst, Employee Engagement and Experience

Marsh McLennan

Brisbane, Queensland, Australia (Hybrid)
1 Month ago
Paradox Interactive - IT Service Manager

Paradox Interactive

Stockholm, Stockholm County, Sweden (On-Site)
1 Month ago
Enphase Energy - Sr. Engineer - Oracle APEX Developer

Enphase Energy

Bengaluru, Karnataka, India (On-Site)
6 Months ago
Qualcomm - HW Program Manager, Sr

Qualcomm

Bengaluru, Karnataka, India (On-Site)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in India

Ubisoft - Customer Success Analyst

Ubisoft

Bengaluru, Karnataka, India (On-Site)
4 Weeks ago
Dream Sports - SDE3 - Full Stack Developer

Dream Sports

Mumbai, Maharashtra, India (On-Site)
8 Months ago
SparkCognition - Recruiter

SparkCognition

Bengaluru, Karnataka, India (On-Site)
9 Months ago
HCL Tech - Technical Specialist

HCL Tech

Noida, Uttar Pradesh, India (On-Site)
1 Month ago
PwC - Senior Associate

PwC

Bhopal, Madhya Pradesh, India (On-Site)
9 Months ago
Qualcomm - Engineer, Senior - Core Platform Boot Loaders

Qualcomm

Hyderabad, Telangana, India (On-Site)
1 Month ago
Paytm - DevOps Engineer/Senior DevOps-Paytm Money

Paytm

Bengaluru, Karnataka, India (On-Site)
7 Months ago
Mindtickle - Software Development Engineer 2

Mindtickle

Bengaluru, Karnataka, India (Hybrid)
2 Months ago
Tide - Lead Data Scientist

Tide

Hyderabad, Telangana, India (Hybrid)
1 Month ago
Coda - Senior/Staff Software Engineer (Relocation to Bangkok)

Coda

Bengaluru, Karnataka, India (Hybrid)
7 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Roblox - Senior Security Operations Analyst

Roblox

San Mateo, California, United States (On-Site)
1 Week ago
Tide - Staff Security Engineer, Identity

Tide

Delhi, India (On-Site)
2 Months ago
PwC - ETIC, Cybersecurity Graduate Program

PwC

Cairo, Cairo Governorate, Egypt (On-Site)
8 Months ago
Zuora - Security Engineer

Zuora

Sydney, New South Wales, Australia (Hybrid)
1 Month ago
Qualcomm - Security and Access control - Lead/Staff Engineer

Qualcomm

Bengaluru, Karnataka, India (On-Site)
3 Weeks ago
Tencent - Senior Client-Side Security Engineer

Tencent

Shenzhen, Guangdong Province, China (On-Site)
1 Month ago
nissan - Sr. Defensive Cybersecurity Analyst

nissan

Franklin, Tennessee, United States (Hybrid)
3 Weeks ago
Roblox - Senior Security Software Engineer, Network Security

Roblox

San Mateo, California, United States (On-Site)
1 Week ago
Varonis  - Frontend Angular Engineer - AI Security

Varonis

Herzliya, Tel Aviv District, Israel (Hybrid)
3 Months ago
Guardian - Head Of Cyber Security Governance

Guardian

New York, United States (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

About The Company

At Boomi, we believe in accountability and transparency, and proudly enable innovation. When you work at Boomi, you can be your true, authentic self in our unique, independent culture. Be boldWe take ownership of our work and results, continuously improve, exceed expectations, stay curious, and create for the future while learning from the past. Be youWe build authentic relationships, lead with integrity, and bring our whole selves to our work and interactions with customers, partners, and communities.

Hyderabad, Telangana, India (Hybrid)

United States (Remote)

India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Ramat Gan, Tel Aviv District, Israel (Hybrid)

Toronto, Ontario, Canada (Remote)

Pune, Maharashtra, India (On-Site)

Barcelona, Catalonia, Spain (Hybrid)

United Kingdom (On-Site)

View All Jobs

Get notified when new jobs are added by Boomi

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug