Software Specialist - Supply Chain Security

Bosch Global Software Technologies Private Limited is a 100% owned subsidiary of Robert Bosch GmbH, one of the world's leading global supplier of technology and services, offering end-to-end Engineering, IT and Business Solutions. With over 27,000+ associates, it’s the largest software development center of Bosch, outside Germany, indicating that it is the Technology Powerhouse of Bosch in India with a global footprint and presence in the US, Europe and the Asia Pacific region.

Roles & Responsibilities :
Design, implement, and maintain secure CI/CD pipelines ensuring supply chain integrity.

• Develop and manage automation frameworks leveraging infrastructure-as-code (IaC).

• Integrate and optimize tools like Terraform, Jenkins, and NixOS to enhance security and efficiency.

• Implement and maintain security tooling for code, build, and deployment pipelines.

• Collaborate with cross-functional teams to ensure security practices are embedded throughout the development lifecycle.

• Manage and optimize cloud-based solutions to support scalable and secure delivery processes.

• Proactively identify, mitigate, and monitor risks related to supply chain vulnerabilities.

• Provide technical guidance and mentorship to teams on secure DevOps practices.
  

Educational qualification: B.E/B.Tech

Experience : 8–10 years

Mandatory/requires Skills :
8–10 years of hands-on experience in software engineering / DevOps / CI/CD security.

• Strong expertise in automation and infrastructure-as-code.

• Proficiency with Terraform, Jenkins, and NixOS for secure deployments.

• Solid understanding of cloud solutions (AWS, Azure, or GCP).

• Experience in implementing supply chain security tooling within CI/CD workflows.

• Strong problem-solving skills with a proactive and security-first mindset.

• Excellent communication and collaboration skills in remote environments.

Preferred Skills

• Familiarity with containerization technologies (Docker, Kubernetes).

• Experience with SAST, DAST, and dependency scanning tools.

• Knowledge of compliance and regulatory requirements for software delivery.