Serve as the technical lead and subject matter expert for Software Composition Analysis to execute security strategy across the SDLC
Job Summary
Serve as the technical lead and subject matter expert for Software Composition Analysis to execute security strategy across the SDLC.
Drive risk-based vulnerability management for open-source dependencies while providing guidance on prioritization and remediation approaches.
Champion a developer-first experience by improving signal quality and delivering clear, actionable remediation guidance aligned with engineering workflows.
Matching Summary
Serve as the technical lead and subject matter expert for Software Composition Analysis to execute security strategy across the SDLC.
Skills & Requirements
Must-have
Software Composition Analysis SCA expertise
CI/CD integration for security tools
Risk-based vulnerability management
Open-source dependency security
Policy definition and tuning
Nice-to-have
Developer-first experience championing
Mentorship of engineering teams
Cross-functional collaboration skills
Strategic initiative participation
Key Requirements
Bachelor's degree in related field or equivalent experience
Hands-on experience deploying SCA/SAST tools
Working knowledge of NIST, OWASP, and MITRE frameworks