BlackDuck Software Management

Software Engineer @ OmniVision Technologies

As the primary user and administrator of BlackDuck at OmniVision Technologies, I managed the company's BlackDuck software instance, ensuring seamless deployment, maintenance, and compliance. I played a key role in securing and monitoring the organization’s open-source dependencies, mitigating vulnerabilities, and ensuring that BlackDuck was fully integrated into our DevSecOps pipeline.

• Deployed and managed BlackDuck using Docker Swarm, automating the orchestration and scaling of services for high availability and fault tolerance.
• Integrated BlackDuck with the company's employee authentication system, enabling secure access control and compliance monitoring across multiple teams.
• Built and maintained detailed documentation for deploying, configuring, and running BlackDuck, ensuring streamlined adoption and troubleshooting within the organization.
• Monitored security scans, analyzed vulnerability reports, and collaborated with development teams to remediate security risks in open-source software dependencies.
• Conducted quarterly meetings with Synopsys' support team to review our software instance, ensuring optimal performance, version compliance, and security updates.
• Automated BlackDuck security scanning in the CI/CD pipeline, enhancing proactive vulnerability detection and enforcing compliance with corporate security policies.
• Optimized system performance by configuring resource allocation and monitoring containerized instances to ensure efficient use of company server resources.
• Assisted internal teams in interpreting BlackDuck vulnerability reports and implementing best practices for open-source security management.

Through my expertise in deploying and maintaining BlackDuck, I enabled OmniVision Technologies to proactively manage software security risks, improve compliance workflows, and maintain a secure, scalable, and well-documented DevSecOps environment.