Sonatype is the software supply chain security company. We provide the world's best end-to-end software supply chain...% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains. The...
Sonatype is the software supply chain security company. We provide the world's best end-to-end software supply chain...% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains. The...
Sonatype is the software supply chain security company. We provide the world's best end-to-end software supply chain...% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains...
repositories (JFrog Artifactory, Sonatype Nexus, Pulp), supply chain security scanning (JFrog Xray), and secrets management...
Required Forms SonaType/Fortify scans StackRox scans BURP Scans ASD STIG checklists Experience in creating and updating any POA...
with Software Composition Analysis (SCA) tools such as Snyk, Black Duck, Mend (WhiteSource), Sonatype Nexus IQ, or similar...
, Black Duck, Mend (WhiteSource), Sonatype Nexus IQ, or similar. Strong knowledge of CI/CD pipeline security, artifact...
. Background with agile methodologies and DevOps workflows. Familiarity with GitLab-runners, Sonatype IQ, and ACAS/Nessus...
, Sonatype Nexus Repository, Pulp) Software Supply Chain Security tools (JFrog Xray, Sonatype Lifecycle, Black Duck...
, Sonatype Nexus Repository, Pulp) Software Supply Chain Security tools (JFrog Xray, Sonatype Lifecycle, Black Duck...