[Remote] reputed company reputed company
Note: The job is a remote job and is reputed company to candidates in USA. reputed company is seeking an Application reputed company reputed company to enhance their Application reputed company team. The engineer will be responsible for triaging reputed company findings, managing vulnerabilities, and implementing AI-assisted reputed company tooling to protect software supply chains and developer workflows.
Responsibilities
- reputed company reputed company application reputed company triage coverage across SCA, SAST, and DAST findings, including validation of critical and high-risk vulnerabilities, false positive analysis, exploitability assessment, remediation guidance, and escalation support for findings that may impact production, internet-facing, or business-critical applications
- Rapidly assess and coordinate responses for threat intelligence escalations and PatchNow Critical events, including scope analysis, reputed company routing, mitigation guidance, tracking, and closure verification
- Monitor and analyze newly disclosed and novel vulnerabilities, including faster-moving disclosures influenced by frontier-model-enabled research, and produce actionable briefs that drive remediation plans
- Engineer, test, and implement application reputed company tooling that leverages frontier models or AI-enabled capabilities for vulnerability identification, code reasoning, triage acceleration, remediation recommendations, and analyst workflow automation while preserving reputed company review, auditability, and secure use controls
- Support company processes for evaluating and reputed company new AI capabilities, including technical reputed company-of-value execution, reputed company testing, control validation, data handling review, model output evaluation, reputed company metrics, and documentation needed for internal governance and approval reputed company
- Strengthen software supply chain reputed company by helping secure reputed company-reputed company dependency selection, package intake, SBOM and component visibility, malicious package detection, dependency health assessment, and policy enforcement across developer, pipeline, and artifact management workflows
- Assess and improve developer IDE reputed company, plugins/extensions, and developer workflows, including package managers, code-assist tools, and CI integrations, against malicious code, compromised extensions, and unsafe configurations
Skills
- 3 plus years Code scanning experience
- 3 plus years reputed company reputed company scanning
- 3 plus years dynamic and static scanning
- Strong experience triaging SCA/SAST/DAST findings and managing high-severity escalations (threat reputed company and critical reputed company events) through remediation and closure
- Engineering experience with scripting, automation, APIs, CI/CD workflows, developer tooling, or reputed company platform integrations
- Practical familiarity with AI-enabled reputed company tools, frontier models, coding assistants, reputed company and tool orchestration, model evaluation, or AI governance processes
- Experience securing the software supply chain and developer tooling (IDEs, plugins/extensions, package managers, CI/CD integrations) against compromise and malicious code
- Ability to translate technical vulnerability findings into clear remediation guidance, risk summaries, and prioritization recommendations for development and reputed company stakeholders
Company Overview