Machine Learning Security Research Fellow
Trail of BitsSalary not specified
Full Time
Junior (1 to 2 years)
Not SpecifiedCompensation
Entry Level & New Grad, Junior (1 to 2 years)Experience Level
Full TimeJob Type
UnknownVisa
Software, CybersecurityIndustries
Skills
Key technologies and capabilities for this role
Questions & Answers
Common questions about this position
Is this position remote?
Yes, this is a 100% remote position, but candidates must currently live in Colombia.
What skills are required for the Security Researcher role?
Required skills include a Bachelor of Science Degree in Computer Science, Cybersecurity, Engineering, or related field; 2+ years of experience in software development or application security; knowledge of Java, C#, or JavaScript; knowledge of application security such as the OWASP Top 10 or Sans 25; excellent oral and written communication skills; excellent organizational skills and detail-oriented; and ability to work independently and as part of a team.
What is the company culture like at Sonatype?
Sonatype offers a fast-paced, flexible, and fun environment with talented, diverse, and forward-thinking individuals.
What is the salary for this position?
This information is not specified in the job description.
What makes a strong candidate for this Security Researcher role?
Strong candidates will have the required degree and experience, knowledge of specified programming languages and application security, plus preferred qualifications like experience with additional languages such as Python or Ruby, operating systems, penetration testing, or open-source environments like GitHub.
Sonatype
Manages and secures open-source software usage
About Sonatype
Sonatype helps organizations manage and secure their use of open-source software, which is software that anyone can inspect and modify. Their main product, the Nexus Platform, automates DevOps processes and governs the usage of open-source software. This platform supports practices that combine software development and IT operations to speed up the development lifecycle and ensure high-quality software delivery. Sonatype serves a variety of clients, including IT leaders and developers across different industries, such as healthcare. Unlike many competitors, Sonatype offers both free and paid versions of their products, allowing users to manage software components effectively. Their goal is to provide tools that enhance software security and efficiency in development, generating revenue through subscriptions to their advanced features.
Fulton, MissouriHeadquarters
2008Year Founded
$150.5MTotal Funding
GROWTH_EQUITY_VCCompany Stage
Enterprise Software, CybersecurityIndustries
501-1,000Employees
Benefits
Distributed Workforce - Walls don’t make a company great, people do — and we have the best. While we have offices in the US in Maryland and Virginia, and also in London and Sydney, our growing and talented team lives and works anywhere and everywhere.
Mission Driven - We’re helping software developers harness the power of open source, while making software safer. What does that mean for you? An opportunity to join a smart, mission-oriented team that is changing how software is made.
Competitive Salary & Benefits - We believe in taking care of our team. That means more than just interesting work — it's great benefits, competitive compensation packages, flexible schedules, and an endless opportunity to learn and grow.
Open, Transparent, Diverse - Our varied experiences, locations, ethnicities, genders, and sexual orientations, make us a better company. That's why we're committed to bringing different backgrounds and perspectives into our organization.
Risks
Complex software supply chains pose challenges, with only 7% reviewing their risks.
Fixing critical vulnerabilities can take over 500 days, exposing clients to risks.
Partnership with Equifax may risk reputation if security improvements are not achieved.
Differentiation
Sonatype offers a full-spectrum software supply chain management platform.
The Nexus Platform automates DevOps processes and governs open-source software usage.
Sonatype's solutions are trusted by 15 million developers globally.
Upsides
Partnership with OpenText enhances vulnerability management for open-source and custom code.
Availability in AWS Marketplace expands customer base and streamlines platform management.
Recognition as a leader in Software Composition Analysis boosts credibility and client attraction.
Related Jobs
RemoteRemoteSenior Security Analyst, Vulnerability Management
Vanta$139,000 - $164,000/year
- Full Time
- Senior (5 to 8 years)
RemoteSenior/Principal Solutions Architect, Open Source AI (Colorado Springs…
OpenTeamsSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteIndustry Architect - New AI Cybersecurity Concept
Red Cell PartnersSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Application Security Engineer
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Penetration Tester
HumanaSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Analyst
Qualified.com$130,000 - $145,000/year
- Full Time
- Junior (1 to 2 years)
RemoteMachine Learning Security Researcher
Trail of BitsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemotePrincipal DevSecOps Engineer
Second Front SystemsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSoftware Engineer, Security
Render$193,000 - $265,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Security Researcher
Endor LabsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteCopy of Security Consultant
Maze$120,000 - $140,000/year
- Full Time
- Junior (1 to 2 years)
RemoteCyber Threat Analyst
ArcadiaSalary not specified
- Full Time
- Junior (1 to 2 years), Mid-level (3 to 4 years)