Black Duck helps organizations build secure, high-quality software by minimizing risks while maximizing speed and productivity through industry-leading tools and services
Job Summary
Black Duck helps organizations build secure, high-quality software by minimizing risks while maximizing speed and productivity through industry-leading tools and services.
The role involves leading client engagements to assess Application Security Programs against industry frameworks and delivering strategic roadmaps for scaling secure development capabilities.
Candidates will deliver compelling executive-level presentations to CISOs and CTOs while contributing to internal tools and thought leadership on secure software development.
Matching Summary
Black Duck helps organizations build secure, high-quality software by minimizing risks while maximizing speed and productivity through industry-leading tools and services.
Skills & Requirements
Must-have
5-8 years application security experience
BSIMM NIST SSDF OWASP SAMM frameworks
Open-source software security expertise
SBOM standards SPDX CycloneDX knowledge
Executive presentation skills
Secure SDLC CI/CD pipeline familiarity
Nice-to-have
Big Four or boutique consultancy background
Software supply chain risk management
AI ML assurance experience
Java Python C# development background
CEH CISSP CISM certifications
Key Requirements
5-8 years in application security consulting
Proven experience with maturity models and roadmaps