Get all C2C Jobs / hotlists šŸ”„ Alerts

US jobs, C2C Hotlists, vendor list and Staffing News

DevSecOps & Supply Chain Security Consultant

DevSecOps & Supply Chain Security Consultant

Tewksbury, MA 01876  Onsite

 

Role Summary

Assess software supply chain security, SDLC maturity, SBOM governance, CI/CD pipeline controls, secrets management, logging/auditability, and vulnerability management to support lifecycle security evaluation and compliance traceability.

 

Key Responsibilities

  • Review SDLC processes, tooling, and secure development practices
  • Assess software supply chain security, including SCA, SBOM accuracy/completeness, dependency governance, and third-party risk
  • Evaluate CI/CD pipeline security, artifact integrity, and secure release controls
  • Review secrets management across development, build, deployment, and operational environments
  • Assess logging, auditability, and security event traceability controls
  • Evaluate vulnerability management, remediation tracking, and patch governance processes
  • Support lifecycle security assessment, compliance evidence mapping, and traceability
  • Contribute to assessment reporting, remediation guidance, and release governance reviews

 

Required Skills & Experience

Mandatory:

  • Strong understanding of DevSecOps and secure software delivery practices
  • Experience with SBOM frameworks (CycloneDX, SPDX) and SCA tooling
  • Familiarity with CI/CD security controls and artifact integrity validation
  • Experience with vulnerability management and dependency governance programs
  • Understanding of lifecycle security, auditability, and compliance evidence requirements
  • Experience with secrets management and secure release governance

 

Good to have:

  • Experience participating in CRA or regulated product security, or compliance-driven cybersecurity assessments
  • Experience participating in engagement related to export-controlled environments
  • Strong documentation skills

 

Preferred Certifications

  • Kubernetes / Cloud Security certifications preferred
  • DevSecOps or secure software supply chain experience preferred
  • Familiarity with SLSA or modern software supply chain security practices
  • Clearance / Compliance Requirements

 

Years of Required Experience 

  • 7-10 years in setting up, maintaining and controls validation of Secure. CI/CD pipelines across different type of tech stack.
  • 2+ Years experience with SBOM analysis

 

 

Looking forward to work with you !!

 

Riya  | Manager – Talent Acquisition

United IT Solutions Inc | Email: riya@uniteditinc.com

LinkedIn: https://www.linkedin.com/in/rajeshwari-r-riya-81848921a/

www.uniteditinc.com | 1212 Corporate Dr, Suite 555, Irving, TX – 75038

*United IT Solutions, Inc. is Celebrating 16 years in the IT Industry *

 

 

 
 
 

To unsubscribe from future emails or to update your email preferences click here

About Author

Iā€™m Monica Kerry, a passionate SEO and Digital Marketing Specialist with over 9 years of experience helping businesses grow their online presence. From SEO strategy, keyword research, content optimization, and link building to social media marketing and PPC campaigns, I specialize in driving organic traffic, boosting rankings, and increasing conversions. My mission is to empower brands with result-oriented digital marketing solutions that deliver measurable success.

Leave a Reply

Your email address will not be published. Required fields are marked *

×

Post your C2C job instantly

Quick & easy posting in 10 seconds

Keep it concise - you can add details later
Please use your company/professional email address
Simple math question to prevent spam
āœ… Quick posting ā€¢ šŸ”’ Secure ā€¢ šŸš€ Instant visibility