Sonatype
Cybersecurity • Software • SaaS
Sonatype is a leader in software composition analysis (SCA) and software supply chain management. The company provides solutions to automate software supply chain security, build centralized components, control open source risks, and simplify software bill of materials (SBOM) compliance. Sonatype offers tools such as Nexus Repository, Repository Firewall, Lifecycle, and SBOM Manager, which help developers deliver quality code securely and manage vulnerability risks. Sonatype integrates with numerous tools and languages, supporting dev, security, and ops teams to ensure secure deployments. The company is recognized for its end-to-end software supply chain solutions that leverage artificial intelligence to predict and intercept malicious components, enhancing security across industries such as financial services and technology.
Security Researcher
Job not on LinkedIn
July 10
Sonatype
Cybersecurity • Software • SaaS
Sonatype is a leader in software composition analysis (SCA) and software supply chain management. The company provides solutions to automate software supply chain security, build centralized components, control open source risks, and simplify software bill of materials (SBOM) compliance. Sonatype offers tools such as Nexus Repository, Repository Firewall, Lifecycle, and SBOM Manager, which help developers deliver quality code securely and manage vulnerability risks. Sonatype integrates with numerous tools and languages, supporting dev, security, and ops teams to ensure secure deployments. The company is recognized for its end-to-end software supply chain solutions that leverage artificial intelligence to predict and intercept malicious components, enhancing security across industries such as financial services and technology.
📋 Description
• Investigate and analyze vulnerabilities in open-source software. • Provide high-quality security data from researching software vulnerabilities. • Document attack capabilities. • Provide detection and remediation guidance. • Collaborate with other team members toward shared product goals. • Improve Sonatype products by providing valuable security data. • Work with technology and business team members to define and refine requirements in an agile development environment.
🎯 Requirements
• Bachelor of Science Degree in Computer Science, Cybersecurity, Engineering, or related field. • 2+ years of experience in software development or application security • Knowledge of Java, C#, or JavaScript • Knowledge of application security such as the OWASP Top 10 or Sans 25 • Excellent oral and written communication skills • Excellent organizational skills and detail oriented • Ability to work independently and as part of a team
🏖️ Benefits
• Parental leave • Diversity and inclusion working groups • Flexible working practices
Apply Now