Secure Supply Chain Software Engineer [Expert level]

• Design and develop systems that strengthen the security of the entire software supply chain.
• Implement and integrate solutions for detecting vulnerabilities in third-party libraries, operating systems, and containerized environments.
• Work with GitLab, CI/CD pipelines, and build attestation systems to enhance security throughout the development lifecycle.
• Collaborate closely with infrastructure and security teams to integrate security best practices at every stage.
• Partner with developers across the organization to seamlessly embed security measures into their workflows.

• Salary based on B2B contract (via Devire) 200-240 pln/h net+vat
• Long-term employment
• Private HealthCare
• Sports card 
• Life insurance
• Working for a leading corporation with a stable market position
• Working in the international environment
• Office work (with possibility of 3 days a week office work) with supportive and positive environment

• 10+ years of experience in software engineering, development, or similar roles.
• Broad knowledge of multiple programming languages, with deep expertise in at least one of Golang, Java, or Python.
• Familiarity with Linux, Docker, Kubernetes, Terraform, and AWS.
• Understanding of networking protocols (TCP, UDP, ICMP, ARP, DNS, TLS, HTTP, SSH, etc.).
• Experience with DevOps practices and Infrastructure as Code (IaC).
• Background in developing and managing large-scale distributed systems throughout their lifecycle.
• Experience in optimizing performance, availability, and scalability of mid-to-large systems.

Nice to Have (but not required)

• Knowledge of Kafka or similar event streaming platforms.
• Experience with relational databases.
• Familiarity with Site Reliability Engineering (SRE) best practices.

Responsibilities

• Design and develop systems that strengthen the security of the entire software supply chain.
• Implement and integrate solutions for detecting vulnerabilities in third-party libraries, operating systems, and containerized environments.
• Work with GitLab, CI/CD pipelines, and build attestation systems to enhance security throughout the development lifecycle.
• Collaborate closely with infrastructure and security teams to integrate security best practices at every stage.
• Partner with developers across the organization to seamlessly embed security measures into their workflows.