AI/Data Engineer - Software Supply Chain Security Job at Oteemo Inc., San Antonio, TX

RHd3cTVmK1FzbkZDVmNDTmFPMVpxV3RzQ0E9PQ==
  • Oteemo Inc.
  • San Antonio, TX

Job Description

We are looking for an engineer who can apply AI, data analysis, and automation to secure the software supply chain. This is not a “train a model” research role — it’s a practical, hands-on position where you’ll use LLMs, analytics, and automation to detect risks, prioritize fixes, and harden systems ranging from container images to package dependencies. You will turn messy vulnerability and SBOM data into clear, actionable security improvements.

Responsibilities:

  • Build and optimize pipelines that use SBOMs, CVE data, and AI/ML to assess and harden software components.
  • Apply AI/ML techniques to prioritize vulnerabilities, suggest fixes, and detect high-risk patterns across large dependency sets.
  • Automate ingestion and normalization of advisories, scanner output, and vendor data for security decision-making.
  • Experiment with LLMs to reduce manual triage, generate draft remediation guidance, and summarize vendor notices.
  • Provide data-driven recommendations for securing containers, AMIs, ISOs, packages, and third-party dependencies.
  • Develop dashboards and metrics (e.g., risk scores, patch coverage, remediation timelines) for engineering and leadership.
  • Document workflows and enable other teams to use AI/automation in supply chain security.

Qualifications:

  • DOD Clearance Eligibility.
  • Proficiency with AI/ML or data science tools (Python, Pandas, or similar).
  • Experience using LLMs for workflow automation, data analysis, or summarization.
  • Solid understanding of software supply chain security concepts (containers, packages, SBOMs, vulnerability management).
  • Hands-on with scanners and SBOM tools (Trivy, Grype, Syft, Anchore).
  • Strong data wrangling skills — building scripts or automations to process vulnerability and SBOM datasets.
  • Clear communication skills to explain AI-driven findings to engineering, security, and compliance audiences.

Nice to Have:

  • Active Secret or Top Secret Clearance.
  • Familiarity with supply chain security frameworks (SLSA, NIST 800-218, CIS Benchmarks).
  • Exposure to compliance or vendor risk management.
  • Experience with cloud-native security tooling (Docker Scout, Snyk, GUAC).
  • Contributions to open source supply chain security or data automation projects.

Job Tags

Similar Jobs

The Lane Construction Corporation

Information Technology Security Manager Job at The Lane Construction Corporation

 ...airports, metros, and railways. Lane specializes in mobility, tunneling, and water resources to address sustainable development and climate change adaptation challenges. Responsibilities Develops and enforces security policies, procedures, and protocols to... 

Robert Half

Materials Coordinator Job at Robert Half

As a Footwear Material Developer, you will provide support to the Material Team in organizing, tracking, and maintaining materials, reports, and vendor communications to ensure efficient workflow and alignment across global teams. You will also support the Material Library...

Somewhere

Virtual Assistant Spanish Bilingual (HR Recruiting & Bookeeping) - 43311842311 Job at Somewhere

 ...Position : Virtual Assistant Work Hours (Client) : 8:30 AM - 5:00 PM EST Pay Range...  ...recruiting for a Virtual Assistant with Spanish and English fluency. The role combines...  ...3+ years of related experience Bilingual proficiency in Spanish and English (spoken... 

Nitto Americas

Patent Attorney Job at Nitto Americas

 ...Join a team where your legal expertise fuels innovation. Were looking for a sharp, strategic Patent Attorney to lead IP efforts across cutting-edge technologies. Youll work closely with R&D and product teams to secure and defend our intellectual property in a fast-... 

Tex Tech Industries

Process Engineer Job at Tex Tech Industries

 ...Process Engineer Join our Tex-Tech Engineered Composites (TTEC) location in Winston-Salem, NC! TTEC is a government contractor for...  ...6. We are an experienced engineering team and are looking for entry-level or experienced process engineers who can jump in, get their hands...