Overview:
GrammaTech is seeking a skilled software engineer to work on a new product for assessing the risk of security vulnerabilities in the software supply chain. The successful candidate will have primary responsibility for the creation and maintenance of data pipelines that relate code to security vulnerabilities. Close attention to detail is paramount.
Location: Preference is for Ithaca, NY or Bethesda, MD, but hiring manager may consider remote employees (MUST BE IN USA) when there is a strong match of skills and experience. (COVID Restrictions are in place and the team will not require relocation until restrictions are lifted.)
Responsibilities:
- Create and maintain data pipelines and workflows to harvest raw data from package managers and vulnerability databases
- Manage the data-backend of the product, maintaining data-quality, and exposing data through APIs
- Work with an agile team to deliver the product to customers in both SaaS and on-premises contexts
- Explore innovative ways to expand the scope of the data, its production, and its management
Qualifications:
Required:
- BS or better in Computer Science
- At least 3 years of experience in agile software development
- Experience in code-level software security
- Experience with SaaS products deployed with Docker containerization under Kubernetes
Skills:
- Python
- Databases –both SQL and noSQL
- Package managers
- Building open-source projects from source for different platforms
Bonus skills:
- C/C++
- Compiler internals and machine code
Data source
Stack Overflow