Software Supply Chain Engineer

We are looking for a Software Supply Chain Engineer to support the Software Supply Chain Compliance & Integrity team and ensure regulatory compliance across products.

Your responsibilities:

• Collaborate with architects and developers to generate and maintain Software Bill of Materials (SBOM) for commercial products

• Review and assess open source usage to ensure compliance with regulations and licensing requirements

• Integrate compliance checks into CI/CD pipelines to identify risks early in the development process

• Manage dependencies across multiple programming languages (.NET/C#, Python, Java, C/C++, Node.js/TypeScript)

• Work with Linux and Windows environments, including containers and virtual machines

• Create and maintain compliance documentation, policies, and best practices

• Utilize CycloneDX to improve SBOM accuracy and compliance processes

• Monitor regulatory requirements (e.g., FDA) and align internal practices accordingly

• Provide training and guidance to development teams on open source compliance and licensing

• Act as a subject matter expert on open source licenses, obligations, and restrictions

We are looking for you, if you have:

• Bachelor’s degree in Computer Science, Software Engineering, or a related field (advanced degree is a plus)

• Minimum 2 years of experience in open source compliance, preferably in a regulated industry

• Hands-on experience with CI/CD pipelines and integrating compliance checks

• Strong knowledge of open source licenses and compliance best practices

• Experience with CycloneDX or similar SBOM standards

• Proficiency in dependency management for at least two programming languages, such as .NET/C#, Python, Java, C/C++, Node.JS/TypeScript.

• Familiarity with Linux and Windows operating systems

• Excellent communication and collaboration skills

• Strong analytical and problem-solving abilities

• Proactive, self-driven approach with the ability to work independently

We offer:

• Participation in interesting and demanding projects

• Flexible working hours

• A great, non-corporate atmosphere

• Possibility to work remote or hybrid (2 days per week from the office)

• Opportunities for development and promotion

• Attractive package of benefits

We reserve the right to contact the selected candidates.