Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. Black Duck, a recognized pioneer in application security, provides SAST, SCA, and DAST solutions that enable teams to quickly find and fix vulnerabilities and defects in proprietary code, open source components, and application behavior. With a combination of industry-leading tools, services, and expertise, only Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle.

Black Duck maintains the world's largest and most comprehensive knowledge base of open-source software intelligence. Built over two decades, this knowledge base encompasses extensive data on open-source components, vulnerability intelligence, software licensing, and associated metadata. This data powers critical security decisions worldwide and forms the foundation of our industry-leading software composition analysis and AI-powered security solutions.

You'll maintain data quality standards for the industry's most comprehensive open-source knowledge base

• Your work ensures accurate vulnerability intelligence that protects production systems globally

• You'll contribute to the data foundation that powers our next-Generation AI security tools

• You'll be part of a team building and maintaining a strategic competitive advantage that cannot be replicated

Ideal candidates are detail-oriented problem solvers who thrive in a research-intensive environment, can balance multiple priorities, and understand that data quality is the foundation of trustworthy security intelligence.

Responsibilities:

• Identify and resolve software data quality issues

• Research open-source components, security vulnerabilities, and licensing information to resolve data quality issues

• Respond to and resolve customer queries related to data quality issues

• Proactively maintain and ensure data accuracy according to data quality standards

• Perform software composition analysis scanning for specific issue replication

• Utilize internal tools and develop scripts to create tooling

• Collaborate with engineering, security research, and customer support teams to resolve data quality issues

Skills and Experience:

• Degree in Computer Science, Data Science, Information Systems / related field or proven willingness to learn

• Ability to work independently and as part of a team

• Strong analytical and problem-solving skills

• Excellent written and verbal communication skills

• Ability to manage multiple tasks and deadlines

• Self-directed research skills with ability to investigate unfamiliar software packages, vulnerabilities, and licensing terms

• Exceptional attention to detail

• Recognize when to escalate problems to other teams

• Familiarity with version control and source control systems (e.g., Git)

• Ability to prioritize multiple issues based on urgency and impact

• Experience with process documentation

• Pro-active in self- development and knowledge sharing with the team

Desired Skills & Experience:

• Experience with scripting languages (Various: Python /Perl/Java/Ruby etc)

• Experience with SQL

• Understanding of software security and vulnerability management

• Knowledge of open-source software and licenses

• Experience with issue tracking systems (e.g., Jira)

• Familiarity with software composition analysis or application security tools

• Experience working with vulnerability databases (CVE, NVD, etc.)

Black Duck considers all applicants for employment without regard to race, color, religion, sex, gender preference, national origin, age, disability, or status as a Covered Veteran in accordance with federal law. In addition, Black Duck complies with applicable state and local laws prohibiting discrimination in employment in every jurisdiction in which it maintains facilities. Black Duck also provides reasonable accommodation to individuals with a disability in accordance with applicable laws.

Data Engineer/Scientist 1

TLDR