Himalayas logo
AS
Open to opportunities

Anes Suhonjic

@anessuhonjic

Software security engineer specializing in SBOM-driven supply-chain risk automation.

United States
Message

What I'm looking for

I seek roles focused on SBOM and supply-chain security, automation of vulnerability workflows, collaborative cross-functional teams, and opportunities to scale tooling and improve vendor risk assessments.

I am a software security engineer focused on software supply-chain risk, SBOM analysis, and automation to strengthen vulnerability management for government and critical-infrastructure clients.

At Fortress Information Security I performed SBOM-driven supply-chain risk analysis, correlated CPEs and CVEs with NIST NVD data, and automated SBOM parsing and processing using Python, Pandas, CycloneDX, and SPDX to increase throughput fivefold.

I built web scraping and crawling solutions for vendor inventory tracking and contributed to an in-house SBOM generation tool using FastAPI, Celery, Redis, and Docker, reducing operational costs and improving workflow automation.

I conduct OSINT vendor research, validate DDVR reports, assess CVE exploitability to reduce false positives, and produce technical documentation to standardize processes while collaborating with cross-functional teams and engaging clients.

Experience

Work history, roles, and key accomplishments

FS
Current

Software Security Engineer I

Fortress Information Security

Jan 2023 - Present (3 years 1 month)

Performed SBOM-driven supply-chain risk analysis and OSINT to identify exposures and prioritize remediation for government and critical-infrastructure clients, and automated SBOM parsing to increase processing capacity 5x.

SPDX)PythonWeb ScrapingfastAPICeleryDockerOSINT

Education

Degrees, certifications, and relevant coursework

CompTIA logoCO

CompTIA

CompTIA Security+ (SY0-601), Cybersecurity

2022 - 2022

Completed the CompTIA Security+ (SY0-601) certification in 2022.

University of Missouri - St. Louis logoUL

University of Missouri - St. Louis

Bachelor of Business Administration, Business Administration

2019 - 2021

Activities and societies: NCAA Division II Soccer student-athlete

Completed a Bachelor of Business Administration with coursework relevant to business and IT from 2019 to 2021; participated as a NCAA Division II soccer student-athlete.

Tech stack

Software and tools used professionally

Pandas logo

Pandas

PostgreSQL logo

PostgreSQL

MongoDB logo

MongoDB

Gmail logo

Gmail

Redis logo

Redis

JSON logo

JSON

FastAPI logo

FastAPI

Linux logo

Linux

Windows logo

Windows

JSON API logo

JSON API

Refine logo

Refine

Increase logo

Increase

Remote logo

Remote

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Security Software EngineerSecurity Software EngineerSupply Chain AnalystVulnerability AnalystSenior Security Automation EngineerOSINT AnalystSecurity EngineerApplication Security EngineerSenior Security Engineer

Skills

SBOMsCycloneDXSoftware Supply Chain VulnerabilitiesVulnerability AssessmentCPECVENIST)Vendor Risk ManagementOSINTPythonPandasJSONAPI IntegrationWeb ScrapingData ExtractionWorkflow AutomationDockerfastAPICeleryRedisLinuxWindowsAWS S3MongoDBPostgreSQLConfluenceGmailIncreaseJSON APIRefine Remote

Interested in hiring Anes?

You can contact Anes and 90k+ other talented remote workers on Himalayas.

Message Anes

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Anes Suhonjic - Software Security Engineer I - Fortress Information Security | Himalayas