Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Vanguard

Supply Chain Security Specialist

Vanguard

Supply Chain Security Specialist defining and owning software supply chain security strategy. Collaborating on vulnerability management, tooling strategy, and secure development practices.

Posted 6/19/2026full-timeMalvern • North Carolina, Pennsylvania, Texas • 🇺🇸 United StatesMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
JavaPythonSDLC

About the role

Key responsibilities & impact
  • Define and own enterprise software supply chain security strategy, roadmap, and governance
  • Establish policies and guardrails for SBOM, artifact signing, provenance, and dependency usage
  • Embed security controls across SDLC, CI/CD pipelines, and artifact repositories
  • Implement and enforce SBOM generation, validation, and artifact integrity controls
  • Collaborate with stakeholders and lead risk-based vulnerability management for open-source and third-party components
  • Collaborate with stakeholders and define remediation workflows, SLAs, and exception handling for supply chain risks
  • Own tooling strategy for SCA, container scanning, and supply chain security automation
  • Integrate and optimize security tooling within CI/CD for scalable enforcement
  • Maintain inventory and visibility of dependencies, SBOMs, and third-/fourth-party exposure
  • Partner with AppSec, DevSecOps, and platform teams to drive secure development adoption
  • Enable developers via playbooks, guardrails, and self-service secure consumption patterns
  • Define metrics and report on supply chain risk posture, remediation effectiveness, and maturity

Requirements

What you’ll need
  • Minimum of five years related work experience
  • Undergraduate degree or equivalent combination of training and experience
  • Graduate degree preferred
  • 7–10+ years in AppSec / DevSecOps / platform security
  • Hands-on experience with SCA + pipeline security
  • Certifications preferred (CISSP, CSSLP, AAISM or equivalent etc.)
  • Programming/scripting (Python, Java, YAML)

Benefits

Comp & perks
  • Professional development opportunities
  • Flexible working arrangements

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
SBOM generationartifact signingdependency usagesecurity controlsSCAcontainer scanningpipeline securityPythonJavaYAML
Soft Skills
collaborationleadershiprisk managementcommunicationstakeholder engagementproblem-solvingmetrics reportingremediation workflowsexception handlingsecure development adoption
Certifications
CISSPCSSLPAAISM