Apply Now

DevSecOps & Supply Chain Security Consultant

Tewksbury, MA, US • Posted 1 day ago • Updated 1 day ago

Contract Independent

Contract W2

Contract Corp To Corp

On-site

Depends on Experience

Digital Dhara LLC

Fitment

Dice Job Match Score™

⏳ Almost there, hang tight...

Job Details

Skills

DevSecops

Summary

Role Summary

Assess software supply chain security, SDLC maturity, SBOM governance, CI/CD pipeline controls, secrets management, logging/auditability, and vulnerability management to support lifecycle security evaluation and compliance traceability.

Key Responsibilities

Review SDLC processes, tooling, and secure development practices
Assess software supply chain security, including SCA, SBOM accuracy/completeness, dependency governance, and third-party risk
Evaluate CI/CD pipeline security, artifact integrity, and secure release controls
Review secrets management across development, build, deployment, and operational environments
Assess logging, auditability, and security event traceability controls
Evaluate vulnerability management, remediation tracking, and patch governance processes
Support lifecycle security assessment, compliance evidence mapping, and traceability
Contribute to assessment reporting, remediation guidance, and release governance reviews

Required Skills & Experience

Mandatory:

Strong understanding of DevSecOps and secure software delivery practices
Experience with SBOM frameworks (CycloneDX, SPDX) and SCA tooling
Familiarity with CI/CD security controls and artifact integrity validation
Experience with vulnerability management and dependency governance programs
Understanding of lifecycle security, auditability, and compliance evidence requirements
Experience with secrets management and secure release governance

Good to have:

Experience participating in CRA or regulated product security, or compliance-driven cybersecurity assessments
Experience participating in engagement related to export-controlled environments
Strong documentation skills

Preferred Certifications

Kubernetes / Cloud Security certifications preferred
DevSecOps or secure software supply chain experience preferred
Familiarity with SLSA or modern software supply chain security practices
Clearance / Compliance Requirements

Years of Required Experience

7-10 years in setting up, maintaining and controls validation of Secure. CI/CD pipelines across different type of tech stack.
2+ Years experience with SBOM analysis

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 91170785
Position Id: 9001096
Posted 1 day ago

Company Info

About Digital Dhara LLC

Wouldn’t it be amazing to have access to a global network of the world’s smartest people—people with specialized IT and engineering skills? Partnering with us instantly gives you the ability to bring experts or multi-disciplined teams into your business.

You can rely on us to manage entire services on your behalf or deliver your products and services end-to-end at our global Delivery Centers and Centers of Excellence.

We believe that having the speed, agility, expertise and scale to outpace technology actually comes down to one very simple solution – the right people, working together, in the right ways. Let us help you connect smarter.

Go to company profile

Contact the job poster

Abhijeet Kapade

Recruiter @ Digital Dhara LLC

View Profile

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Tewksbury, Massachusetts

•

Yesterday

Role Summary Lead and govern the end-to-end product lifecycle cybersecurity assessment engagement for the customer product, including CRA-aligned security evaluation, architecture assessment, threat modeling, technical oversight, evidence traceability, and executive reporting. Serve as the primary customer interface and ensure all assessment activities are executed in compliance with export-control requirements. Key Responsibilities Lead overall engagement delivery, governance, and customer coor

Easy Apply

Contract, Third Party

Depends on Experience

Senior Product Security Consultant

Tewksbury, Massachusetts

•

Yesterday

Role Summary Perform hands-on technical product security assessment activities across the customer product ecosystem, including hardware and device penetration testing, firmware extraction and binary analysis, exploitability validation, secure update mechanism review, and embedded security assessment. Key Responsibilities Perform hardware and device-level penetration testingConduct firmware extraction, unpacking, and binary analysisAssess secure boot, firmware integrity, rollback protection, and

Easy Apply

Contract, Third Party

Depends on Experience

Search all similar jobs

More jobs at Digital Dhara LLC in Tewksbury, MA

DevSecOps & Supply Chain Security Consultant

Digital Dhara LLC

Dice Job Match Score™

Job Details

Skills

Summary

Company Info

About Digital Dhara LLC

Abhijeet Kapade

Similar Jobs