Publica tu HV - Solo toma unos segundos
Ofertas relacionadas
LIDER SENIOR DE MERCADEO Y MARKETING DIGITAL
Hacepack S A S - Bogotá, D.C.
$4.000.000 (mensual)
8 octubre
COORDINADOR DE PAÍS ESPAÑA
Anyvan - Bogotá, D.C.
$20.000.000 (mensual)
12 octubre
WORK FROM HOME SENIOR FULL STACK DEVELOPER (REACTJS + .NET C# WEBAPI) / REF. 0001
Bairesdev Llc - Bogotá, D.C.
Ayer, 09:54 PM
INGENIERO/A SENIOR DE CALIDAD E INCIDENCIAS / CONTRATO INDEFINIDO
Atento S.a. - Bogotá, D.C.
Ayer, 09:54 PM
WORK FROM HOME SENIOR IOS DEVELOPER / REF. 0047E
Bairesdev Llc - Bogotá, D.C.
Ayer, 09:24 PM
TRABAJO DESDE CASA RECLUTADOR SENIOR DE TI / REF. 0196S
Bairesdev Llc - Bogotá, D.C.
Ayer, 09:24 PM
WORK FROM HOME SENIOR JAVA SPRING BOOT DEVELOPER / REF. 0003
Bairesdev Llc - Bogotá, D.C.
Ayer, 09:24 PM
TRABAJO DESDE CASA DESARROLLADOR MÓVIL SENIOR (IOS) / REF. 0047
Bairesdev Llc - Bogotá, D.C.
Ayer, 08:54 PM
Ver mas ofertas

SENIOR SOFTWARE ENGINEER SECURITY VULNERABILITY REMEDIATION

Spacedev ( ) - Bogotá, D.C.
Tiempo Completo - Contrato a término indefinido
Postularse
Descripcion del empleo

Role Overview:

We are seeking a skilled and security-focused Senior Software Engineer to join our team on a contract basis, specializing in Vulnerability Remediation.
In this role, you will play a crucial part in enhancing the security posture of our applications by systematically reducing our attack surface and addressing high-priority security risks using Snyk as the primary scanning tool.
You’ll identify, prioritize, and remediate dependencies with known exploitable vulnerabilities, focusing on targeted risk reduction rather than a simple “update-all” approach.
This position requires a detail-oriented engineer capable of balancing security, stability, and performance, while collaborating with internal teams to ensure safe and effective remediation across multiple codebases.

Responsibilities:
1. Vulnerability Analysis: Analyze Snyk scan results across codebases written in Ruby, Go, Python, JavaScript, and TypeScript.
2. Prioritization: Assess which vulnerabilities are genuinely exploitable in context and should be addressed first.
3. Targeted Remediation: Plan and execute specific dependency upgrades or apply patches that fix prioritized issues with minimal disruption.
4. Code & Test Validation: Refactor code and update tests to ensure full functionality after fixes.
5. Collaboration & Documentation: Work closely with internal security and engineering teams, participate in reviews, and clearly document all changes.

Requirements:
1. Security Tooling: Proven experience using Snyk in production to identify, prioritize, and manage vulnerabilities, including interpreting exploit maturity and reachability.
2. Languages: Strong professional experience with Ruby (Rails), Go, Python, JavaScript, and TypeScript.
3. Package Management: Deep expertise with package managers such as npm/yarn, Go Modules, Pip/Poetry.
4. Version Control: Expert-level proficiency with Git.
5.Testing: Strong commitment to quality with proven experience writing comprehensive automated tests.


Preferred Qualifications:
1. Familiarity with other SAST/SCA tools (e.g., GitHub Advanced Security, Checkmarx, Trivy).
2. Experience integrating security tools into CI/CD pipelines (e.g., Jenkins, GitLab CI, GitHub Actions).
3.Experience with Docker and Kubernetes.

Start Date: As soon as possible
Availability: Must be available to work during Eastern Time Zone business hours
Location: Fully Remote

13 de octubre · Salario: $ 295.000,00 (Mensual)