Key Areas of Focus

• Review, isolate, analyze, and reverse engineer vulnerabilities in open-source software

• Document attack capabilities

• Provide detection and remediation guidance

• Aid in ideas and prototypes for new tooling

• Collaborate with other team members toward shared product goals

• Improve Sonatype products by providing valuable security data

• Work with technology and business team members to define and refine requirements in an agile development environment

• Currently reside in either Canada or the United States of America and are legally authorized to work without sponsorship in the corresponding country.

Required Background

• 5+ years of experience in application security or development experience in Java, C#, Python, JavaScript, C/C++ or Ruby

• Excellent oral and written communication skills

• Excellent organizational skills and detail oriented

• Ability to work independently and as part of a team

Desired Background

• Bachelor of Science Degree in Computer Science, Cybersecurity, Engineering, or related field

• Knowledge of application security such as the OWASP Top 10 or Sans 25

• Knowledge of different languages such as Python, Ruby, and scripting

• Knowledge of different operating systems such as *NIX, Windows

• Application vulnerability assessment or penetration testing experience

• Knowledge of open source environments like Github is a plus

What We Offer:

• The opportunity to be part of an incredible, high-growth company, working on a team of experienced colleagues

• Competitive salary package

• Medical/Dental/Vision benefits

• Business casual dress

• Flexible work schedules that ensure time for you to be you

• 2019 Best Places to Work Washington Post and Washingtonian

• 2019 Wealthfront Top Career Launch Company

• EY Entrepreneur of the Year 2019

• Fast Company Top 50 Companies for Innovators

• Glassdoor ranking of 4.9

• Come see why we've won all of these awards