Security Researcher
SonatypeHuila, Colombia
Posted July 8, 2025
Full Time
About the Company
Sonatype is a leading provider of open source governance solutions, offering repository management, continuous integration, and security tools to help organizations efficiently manage and secure their software supply chains. With over 15 years of experience, Sonatype leverages machine learning, AI, and human expertise to ensure the highest quality and security of open source components, enabling faster innovation and risk mitigation.
Job Description
Sonatype is a software supply chain security company providing comprehensive solutions like Nexus Repository and Lifecycle. They empower organizations to manage their software supply chains effectively and offer AI and data intelligence to mitigate risk and maximize efficiencies. The Security Researcher role will investigate and analyze vulnerabilities in open-source software, ensuring customer value through a quality security data solution.
Requirements
- Bachelor of Science Degree in Computer Science, Cybersecurity, Engineering, or related field.
- 2+ years of experience in software development or application security.
- Knowledge of Java, C#, or JavaScript.
- Knowledge of application security such as the OWASP Top 10 or Sans 25.
- Excellent oral and written communication skills.
- Excellent organizational skills and detail oriented.
- Ability to work independently and as part of a team.
Benefits
- Paid Volunteer Time Off (VTO)
- Parental Leave
