Black Duck Tech Stack

Application security platform for open source risk and compliance

Software Development Burlington, MA 5,001–10,000 employees Founded 2024 Privately Held

Black Duck addresses board-level software security risks through open source scanning, vulnerability assessment, and compliance auditing. The tech stack—Rust, C++, Java, TypeScript across Jenkins/Docker/AWS—reflects a mature security analysis engine built for scale; active adoption of SAST/DAST tooling alongside cloud platforms (AWS, Azure, GCP) signals expansion into dynamic code analysis. Hiring velocity is accelerating across engineering and sales, with particular focus on CI/CD integration and customer onboarding—matching internal projects around pipeline adoption and enterprise agreement expansion.

Tech Stack 172 technologies

Core StackRust C++ Linux Jenkins Selenium Cypress Java JavaScript TypeScript Docker AWS Jira Confluence Postman Django React Angular PostgreSQL C# Python Go Windows TestNG Git Rest Assured FitNesse Ember.js C/C++ SAST DAST+140 more

AdoptingAWS Azure GCP SAST DAST

ReplacingEmber.js

What Black Duck Is Building

◆Challenges

Software security
Managing complexity of security tools
Vulnerabilities in code
Improving vulnerability remediation speed
Improving lead quality
Financial reporting process improvement
Reducing time-to-value
Reducing security review cycles
Minimizing risks while maximizing speed and productivity
Scalable and performant deployment

▲Active Projects

Adopt black duck into ci/cd pipelines
Containerization and orchestration strategy
Ci/cd pipeline maintenance
Customer onboarding and adoption
Continuous dynamic product line
Appsec strategy shaping
Enterprise agreement adoption
Strategic roadmap development for appsec programs
Maturity scoring tool development
Lead scoring and routing optimization

Hiring Activity

Accelerating130 roles · 60 in 30d

Department

Engineering

Sales

Support

Marketing

Finance

Product

Ops

Security

Seniority

Senior

Manager

Mid

Staff

Principal

Junior

Lead

Company intelligence

Find more companies like Black Duck by tech stack, pain points and active projects

Get started free

About Black Duck

Black Duck provides application security solutions focused on open source risk, vulnerability scanning, and regulatory compliance. The platform serves security and engineering leaders at regulated enterprises and mission-critical software organizations, offering on-demand audits, M&A due diligence support, and continuous scanning across cloud and on-premises environments. The company operates across 8 countries with 5,001–10,000 employees, headquartered in Burlington, MA. Current internal priorities include containerization strategy, CI/CD pipeline maturity, and reducing time-to-value for customers adopting the platform at scale.

HeadquartersBurlington, MA

Company Size5,001–10,000 employees

Founded2024

Hiring MarketsIndia, United Kingdom, Japan, Saudi Arabia, Canada, United States, South Korea, Singapore

Frequently Asked Questions

What tech stack does Black Duck use?

Core languages: Rust, C++, Java, JavaScript, TypeScript, Python, Go. Infrastructure: Linux, Windows, Docker, AWS, Jenkins. Testing: Selenium, Cypress, TestNG. Analysis tools: SAST, DAST. Data: PostgreSQL.

What is Black Duck working on?

Key projects: CI/CD pipeline integration and maintenance, containerization/orchestration strategy, customer onboarding automation, maturity scoring tools, lead scoring optimization, and enterprise agreement adoption expansion.