• Own and lead the vulnerability management lifecycle, ensuring our entire tech stack is free from known CVEs. • Implement and manage secure base OS images, ensuring all underlying systems remain hardened against security threats. • Continuously scan, monitor, and patch OSS dependencies to mitigate supply chain risks and enforce best practices for dependency management. • Research and evaluate trusted open-source security solutions like Google’s Assured Open Source Software and recommend their adoption where applicable. • Work closely with engineering teams to integrate state-of-the-art SAST, DAST, and dependency scanning tools into the CI/CD pipeline to detect and remediate vulnerabilities early. • Define and maintain best practices for secure coding to ensure all code developed by Glean engineers is free from vulnerabilities. • Develop automated security validation tests to enforce vulnerability-free deployments across the stack. • Lead the adoption and, if necessary, develop custom security solutions to manage and mitigate security risks at scale. • Provide security guidance, training, and mentorship to engineering teams to foster a security-first culture at Glean.

Role Description Black Duck seeks an experienced Technologist to help our Implementation and Services Team drive customer onboarding and adoption. We're looking for someone to help us take our business to the next level of excellence in delivery and customer delight! The Black Duck Technical Services team is dedicated to supporting our customers in developing their AppSec vision and achieving their goals quickly. We accomplish this through the delivery of exemplary product implementations and adoption-focused services that are tailored to their specific needs. Our services are designed to help customers of all sizes and types, from Startups to global organizations, build secure, high-quality software faster and maximize the value of their Black Duck tools. This position will implement our industry-leading Application Security products and solutions within our large enterprise customers' environments, focusing on the EAST COAST (remote). You will work alongside our sales, sales engineering, customer success managers, product development, support, solution architect, and project management team members to ensure that our clients receive the most value from our AppSec products and achieve a high level of adoption. Responsibilities - Secure Development: Educate customers on Secure Development processes. Identify opportunities for improvement and help them get the most out of their operations. - Customer enablement: Provide formal client training to constant efforts driving self-sufficiency within your assigned accounts. - Solution design: Engage with customers to understand their business needs and solve critical quality, security, and compliance problems. - Delivery: Work with the customer from Project initiation to completion with end-to-end ownership of the results. - Custom integrations: Develop custom solutions to integrate our tools into SDLC and DevOps workflows. - Professional consulting: Be a trusted advisor to our customers, providing solution expertise in the domain of software testing and security. Qualifications - Proven ability to deploy both SaaS and On-prem software solutions. - Software development experience with at least two programming languages namely C/C++, C# or Java. - Strong scripting ability in one or more common scripting languages (Perl, Python, PowerShell, Bash). - Experience with project scoping and requirements gathering. - Experience with Continuous Integration and DevOps tools. - Strong client consultation/onboarding background. - Proven ability to prioritize activities, set objectives and meet milestones. - Well organized. Able to deliver project milestones and deliver on-time. - Understanding of open-source software libraries such as glib, OpenSSL, Boost C++, etc. and their associated licensing. - Able and willing to travel up to 20% as the job requires. - Bachelor’s Degree in Computer Science, Master’s Degree preferred or equivalent Experience. - Must be eligible to work in the United States or Canada (EAST COAST) without requiring sponsorship now or in the future. Benefits - Work From Home (Remote in United States or Canada). - Competitive Total Compensation. - Annual Performance Bonus. - Paid Vacation and Wellness Days. - Group Retirement Savings Plans and Employer Contributions. - Comprehensive Health Benefits. Pay Range $135,900 — $203,900 USD

• Partner with customers (design engineers through end users) to diagnose challenges and develop application-specific solutions • Translate customer needs into test plans, product recommendations, and validated solutions • Deliver technical training to customers and channel partners • Lead or participate as a core member of an engineering or product commercialization team • Support the development of new and modified products to meet customer and market needs • Apply scientific methods to evaluate product performance, quality issues, and new applications • Develop expertise in specialized tribology testing and equipment in collaboration with global experts • Identify opportunities to leverage low-friction coatings and advanced lubricants for differentiated solutions • Work cross-functionally with marketing, supply chain, and business teams • Travel up to ~50% within the Americas for customer engagement and training

• Resolve technical problems by troubleshooting incidents, including but not limited to collecting detailed problem description, traces, log files, and replication. • Communicate progress of investigation with clients while ensuring all related records are properly updated in the CRM system. • Proficient in utilizing all support tools and processes to resolve cases. • Share best practices for the utilization and deployment of Varicent products. • Support KPI targets (SLA, QA, Resolution, etc.). • Available for scheduled weekend coverage for on call rotation.