Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. Black Duck, a recognized pioneer in application security, provides SAST, SCA, and DAST solutions that enable teams to quickly find and fix vulnerabilities and defects in proprietary code, open source components, and application behavior. With a combination of industry-leading tools, services, and expertise, only Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle.
Sr DevOps Engineer, Cloud Operations
Sr. DevOps Engineer will be a key player on the Cloud Operations team responsible for all SaaS and Hosted services across the company's product portfolio. They will proactively work with Engineering, Product, IT, and other functional departments to design, implement, and operate our global customer-facing infrastructure on Google Cloud Platform (GCP). The ideal candidate brings strong hands-on GCP infrastructure and networking expertise, is a self-starter who thrives in a fast-paced environment, excels at problem solving, actively leverages AI and LLM tools to accelerate their work, and is committed to delivering seamless, highly available service experiences to enterprise customers worldwide.
Responsibilities:
• Design, build, and maintain resilient, secure, and highly available infrastructure for all SaaS and Hosted services on GCP to meet established SLAs
• Design and manage secure, scalable GCP network architecture — including VPC design, VPC peering, shared VPC, Cloud Interconnect/VPN, Cloud NAT, firewall rules, and DNS
• Automate deployment pipelines, monitoring, alerting, and incident response using modern CI/CD and GitOps practices
• Monitor site stability and performance using GCP-native observability tooling (Cloud Monitoring, Cloud Logging, Error Reporting) and troubleshoot issues across the stack
• Scale infrastructure to meet rapidly increasing demand using GCP autoscaling, load balancing, and cost-optimization best practices
• Own end-to-end operational responsibility for all customer-facing SaaS and Hosted environments, including availability, performance, and change management
• Manage cross-functional requirements working with Engineering, Product, Services, and other departments
• Collaborate with developers to bring new features and services into production via containerized, Kubernetes-native deployment patterns
• Develop and improve operational practices, runbooks, and procedures — using AI and LLM tools to accelerate automation, generate scripts, diagnose incidents, and improve documentation quality
• Proactively meet standards for information security and compliance, such as ISO, SOX, SSAE 16, etc.
Background & Experience:
• 5+ years' experience in 24x7 production operations supporting a highly available SaaS or cloud service environment
• Strong, hands-on experience with Google Cloud Platform (GCP) — including GKE, Cloud Run, Cloud Storage, VPC networking, IAM, and GCP-native monitoring and logging services
• Strong, hands-on GCP infrastructure and networking experience — including VPC architecture, Cloud Interconnect/VPN, load balancing (GLB, ILB), Cloud DNS, firewall policies, and multi-region network design
• Experience with containerization and image management using Docker; familiarity with container security best practices
• CI/CD pipeline experience (Jenkins, GitHub Actions, ArgoCD, or equivalent); GitOps workflow experience a strong plus
• Experience with Java applications and related J2EE technology stack
• Proficiency in scripting languages (Python, Bash, or Go preferred); experience with infrastructure-as-code tools (Terraform, or equivalent)
• Comfortable using AI and LLM tools (e.g., GitHub Copilot, ChatGPT, Claude, or similar) as everyday productivity aids — for scripting, troubleshooting, documentation, and on-call investigation
• Strong understanding of networking concepts (DNS, TLS, load balancing, service mesh) and troubleshooting techniques
• Strong interpersonal and teaming skills — ability to set and enforce process and influence engineers who are not direct reports.
Education:
• Bachelor's degree in Computer Science or other technical discipline, or equivalent experience
Black Duck is an equal opportunity employer. We consider all applicants for employment without regard to race, color, national origin, religion, sex, gender identity or expression, age, disability, sexual orientation, veteran or military service status, or any other characteristic protected by applicable law. Black Duck complies with all applicable laws prohibiting employment discrimination in every jurisdiction where it operates and provides reasonable accommodations to individuals with disabilities in accordance with applicable law.
Skills Required
- 5+ years experience in 24x7 production operations supporting highly available SaaS or cloud service environments
- Hands-on experience with Google Cloud Platform including GKE, Cloud Run, Cloud Storage, IAM, Cloud Monitoring and Cloud Logging
- GCP networking architecture experience: VPC design, VPC Peering, Shared VPC, Cloud Interconnect/VPN, Cloud NAT, firewall rules, Cloud DNS, multi-region network design, load balancing (GLB, ILB)
- Experience with containerization and image management using Docker
- CI/CD pipeline experience (Jenkins, GitHub Actions, ArgoCD or equivalent)
- GitOps workflow experience
- Experience with Java applications and J2EE technology stack
- Proficiency in scripting languages
- Familiarity with Python, Bash, or Go
- Experience with infrastructure-as-code tools such as Terraform
- Comfortable using AI and LLM tools (GitHub Copilot, ChatGPT, Claude, or similar) as productivity aids
- Familiarity with container security best practices
- Knowledge of observability and incident response using Cloud Monitoring, Cloud Logging, and Error Reporting
- Proactively meet information security and compliance standards such as ISO, SOX, SSAE 16
- Strong interpersonal and teaming skills; ability to set and enforce processes and influence engineers
- Bachelor's degree in Computer Science or other technical discipline, or equivalent experience
Black Duck Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Black Duck and has not been reviewed or approved by Black Duck.
-
Healthcare Strength — Medical, dental, and vision coverage provide multiple plan choices with transparent costs, with carrier updates noted for 2026. Vision via VSP and dental plan options offer defined tiers and network access.
-
Retirement Support — Retirement programs include a 401(k) with company matching alongside an employee stock purchase plan with a discount and lookback. These features support longer‑term savings and wealth building.
-
Leave & Time Off Breadth — Exempt employees use a manager‑approved, no‑cap time‑off model, while non‑exempt employees accrue flexible time off alongside sick time. Paid leaves include parental and family care leave, with additional protections under applicable leave laws.
Black Duck Insights
What We Do
Organizations worldwide use Black Duck Software’s industry-leading products to secure and manage open source software, eliminating the pain related to security vulnerabilities, compliance and operational risk. Black Duck is headquartered in Burlington, MA, and has offices in San Jose, London, Frankfurt, Hong Kong, Tokyo, Vancouver, Seoul & Beijing
Why Work With Us
We pride ourselves on cultivating an environment of collaboration, creativity, and fun! We know where you work can influence how you work, which is why our collaborative office space focuses on community and continuous learning. Our work-hard, play-hard attitude even got us named a Top Place to Work in Massachusetts by The Boston Globe!
Gallery








