Top Cyber Security Jobs in Boston, MA

Lead Product Security and Security Engineering to embed security into the SDLC. Define strategy, build scalable authn/authz and encryption services, secure LLM-driven products, integrate automated S-SDLC tooling, partner with engineering/product, and hire and grow Red Team and PSIRT functions while prioritizing vulnerability remediation.

Design and build real-time security detection engines and streaming analytics using Apache Flink and Kafka. Develop high-performance security APIs and microservices in Go and Node.js, architect Kubernetes-based security solutions, and build petabyte-scale data pipelines. Lead technical design, collaborate with security teams, and mentor junior engineers.

Design, implement, and automate security configurations for corporate endpoints (macOS, Chromebooks, mobile), build automation and integrations, perform security reviews of enterprise systems, and collaborate with IT and engineering to integrate endpoint and SaaS security into company initiatives.

Lead corporate security engineering to define secure-by-default baselines, oversee vulnerability management, drive automation to prevent configuration drift, govern SaaS security, mentor engineers, and ensure alignment with CMMC 2.0 and NIST 800-53 while improving audit readiness.

Design, build, and maintain secure, scalable SecOps platforms using C++, Rust, and scripting. Implement CI/CD and DevOps practices, integrate systems via APIs/webhooks and AI-driven tools, architect cloud (AWS/Azure/GCP) environments, optimize Linux/kernel configurations, automate infrastructure, and collaborate with SecOps on monitoring, detection, and response to protect enterprise assets.

As a Principal Security Engineer, you will lead security initiatives, design secure systems, automate processes, and mentor teams, ensuring safe technology usage.

The Security Architect will design and configure information systems per security standards, enhance security posture, develop policies, assess vulnerabilities, and lead security initiatives while collaborating with teams.

As a Security Engineer, safeguard Runpod's GPU cloud platform, conduct security assessments, implement fixes, and foster a security-first culture with development teams.

The fellowship provides military spouses and separating service members with cybersecurity training and hands-on experience through projects and vendor training, aimed at enhancing their security skills.

Design, develop, and maintain Windows-focused PAM components including services, agents, and RDP handlers. Integrate with Windows APIs, authentication and privilege models, implement secure credential handling and policy enforcement, collaborate with backend teams, perform code reviews, and troubleshoot complex Windows OS and enterprise configurations.

Validate functionality, performance, and reliability of Keeper's endpoint privilege management platform across Windows, macOS, and Linux. Execute manual functional, integration, and regression tests; document test plans and defects in Jira; validate RBAC and audit logging; collaborate with engineering, DevOps, and product teams and contribute to QA automation where applicable.

Build identity verification and fraud-detection systems and correlation engines to analyze candidate signals (IPs, emails, phones, resume metadata). Create high-availability ingestion pipelines, real-time guardrails, and prototype 0->1 solutions. Collaborate with security, platform, and data teams, write technical designs, and participate in the SDLC.

Design, deploy, and optimize enterprise Identity and Access Management solutions (Okta, Ping, Entra ID). Implement SSO/MFA, provisioning, federation, RBAC/ABAC, API/OAuth/OIDC flows, directory integration, automation (PowerShell/Python/REST), and lead projects, presales, and client engagements to ensure secure access and governance across cloud and on-prem environments.

The Security Engineer conducts security assessments, provides strategic advice on security architecture, and implements compliance frameworks while training clients on security best practices.