Senior Go Software Engineer

We are seeking a Go Developer with strong backend engineering skills and an interest in security-focused products to support the development of solutions in the area of software supply chain security.

This engagement focuses on building and improving services related to SBOM generation, security data processing, tool integration, and automation within the engineering ecosystem.

Responsibilities

• Design, develop, and maintain backend services and APIs in Go for software supply chain security use cases
• Implement integrations with internal and external tools related to SBOM generation, vulnerability scanning, and dependency analysis
• Build scalable and reliable components for processing security-related metadata, artifacts, and scan results
• Contribute to CI/CD workflows, automation, and deployment processes to ensure smooth delivery and operational stability
• Collaborate closely with security engineers and the engineering team to translate security and product requirements into practical technical solutions
• Improve code quality, performance, observability, and maintainability of the developed services

Requirements

• Proven experience in backend development with Go, including building production-grade services and APIs
• Understanding of software supply chain security concepts or a strong willingness to learn in this area
• Hands-on experience with integrating third-party tools and APIs ideally related to security SBOM or vulnerability management
• Familiarity with CI/CD practices and automation in modern engineering environments
• Ability to design scalable systems for processing and managing large volumes of security data and artifacts
• Knowledge of best practices for code quality performance optimization and observability
• Experience working collaboratively in cross-functional teams especially with security and engineering professionals

Nice to have

• Experience with software supply chain security SBOM-related concepts or dependency management
• Familiarity with formats such as SPDX or CycloneDX
• Exposure to security tooling such as SCA SAST container scanning or vulnerability management platforms
• Experience building internal platforms developer tools or automation services for engineering teams