Related skills
javascript python go typescript ci/cd๐ Description
- Vulnerability Scanning & Triage: Perform periodic app security scans; prioritize flaws by CVSS.
- Compliance-Driven Tracking: Track vulnerabilities to strict SLAs; audit-ready evidence.
- Executive Reporting & Alerting: Escalate to CISO; dashboards on risk and compliance.
- Software Supply Chain Security: Own SBOM; update inventories; ensure SBOM compliance.
- Remediation Collaboration: Partner with developers; provide mitigation paths and patches.
- Tooling Integration: Configure CI/CD security tooling to reduce false positives.
๐ฏ Requirements
- Experience: 5 years in AppSec, DevSecOps, or software engineering.
- Development Background: Solid software development experience.
- Code Literacy: Read/patch JavaScript/TypeScript, Python, and Go.
- Build System Expertise: Strong familiarity with build systems and package managers.
- AppSec Tooling Expertise: Experience with SAST, SCA, and secret scanning tools (Snyk, Semgrep, Checkmarx).
- Compliance Awareness: Understanding SOC 2, ISO 27001, or NIST.
๐ Benefits
- Equity
- 401(k) Program with a 4% match (US Only)
- Health, Dental, Vision and Life Insurance
- Short Term and Long Term Disability
- Paid Parental, Medical, Caregiver Leave
- Flexible Time Off (FTO) + Holidays
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest โ finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!