×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Support Data Security

Software Supply Chain Specialist

Job in Shakopee, Scott County, Minnesota, 55379, USA
Listing for: City of Shakopee, MN
Full Time position
Listed on 2025-12-01
Job specializations:
  • IT/Tech
    Cybersecurity, IT Support, Data Security
Job Description & How to Apply Below

If you are a Software Supply Chain Security Specialist professional looking for an opportunity to grow, Emerson has an exciting role for you based in either our Shakopee, MN facility or in our Boulder, CO facility! The Software Supply Chain Security Specialist will support Emerson’s efforts to secure and govern its software supply chain by performing hands-on assessments, coordinating vendor engagement, maintaining tooling and dashboards, and ensuring compliance with established policies.

Working under the direction of the Manager, this role is execution focused, helping translate strategy into day-to-day workflows, audits, and vendor interactions.

In This Role, Your Responsibilities Will Be:

Conduct vendor risk assessments based on security, compliance, and performance criteria.

Maintain and update vendor scorecards, flag underperforming suppliers for escalation.

Track vendor remediation plans and monitor follow-through.

Assist in onboarding new software vendors by auditing their security posture and documentation.

Tooling & Automation Support

Support implementation and maintenance of software composition analysis (SCA) tools, SBOM generation/ingestion tools, and pipeline integrations.

Validate SBOMs submitted by vendors for correctness, depth, and format (e.g., SPDX, Cyclone

DX).

Help automate checks for license compliance, vulnerability scanning, and component provenance verification.

Policy & Standards Enforcement

Apply and enforce existing vendor security policies, guidelines, and checklists consistently across projects.

Assist in reviewing third-party software requests from development teams, ensuring they meet policy criteria.

Escalate nonconforming proposals or exceptions to the Manager for review.

Risk & Vulnerability Analysis

Monitor open source and third-party component vulnerabilities, mapping them to affected product lines and dependencies.

Help perform root cause or upstream traceability analysis for supply chain vulnerabilities.

Provide impact assessments and assist in remediation tracking.

Cross-Functional Coordination

Act as liaison between vendors, product teams, legal, procurement, and security/engineering stakeholders.

Schedule and lead vendor technical reviews, workshops, and follow-ups.

Prepare status reports, dashboards, and executive summaries for the Manager and leadership.

Audit & Compliance Support

Support internal and external audits of supplier security practices and supply chain compliance.

Prepare evidence, documentation, and findings for audit reviews.

Help maintain supplier assurance programs and track compliance metrics.

Who You Are:

You show a tremendous amount of initiative in tough situations and are exceptional at spotting and seizing opportunities. You effectively communicate in various settings: one-on-one, small and large groups, or among diverse styles and position levels. You identify and create the processes necessary to get work done.

For This Role, You Will Need:

Bachelor’s degree in Supply Chain Management, Information Security, Software Engineering, or related field

2+ years of experience in supply chain management, software and supply chain security, third-party risk, or a related area

Familiarity with SBOM standards (SPDX, Cyclone

DX), software composition analysis tools (e.g. Snyk, Black Duck, Mend), and vulnerability databases

Willingness to travel up to 10–15%

Legal authorization to work in the United States

Preferred Qualifications that Set You Apart:

  • Exposure to industrial, embedded, or automation software domains
  • Experience with vendor audits, supplier security assessments, or third-party risk frameworks
  • Understanding of secure software development practices, license compliance, and open-source governance
  • Knowledge of regulatory frameworks (EU CRA, IEC 62443)

Our Offer to You:

At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow. We foster an environment that encourages innovation, collaboration, and diverse perspectives—because we know that great ideas come from great teams. Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive. Whether through mentorship,…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search