Software Engineer - Open Source Security
Remote
Full Time
Experienced
Make an Impact on Open Source Security at the Eclipse Foundation
Join our Security Team and play a pivotal role in securing the software supply chains of numerous open source projects used globally. You'll build cutting-edge technical solutions, foster trusted relationships, and lead community-driven initiatives, contributing directly to a culture of proactive security across a diverse international developer community.
Key Responsibilities
Desired Qualifications
Note: Don't worry if you don't meet every qualification listed below. If you're excited about this role and believe you'd excel, we encourage you to apply!
Bonus skills
Experience or knowledge in one or more of these areas will give you an edge:
Why the Eclipse Foundation?
Position Details
Employment Type: Full-time employment offered in multiple countries; B2B contracts available elsewhere.
Location: Fully remote, open to candidates in Europe, Canada, and the US.
Who are we?
The Eclipse Foundation, headquartered in Belgium, is the leading open source software foundation from Europe. With 20 years of fostering innovation, we oversee 420 projects and 20 Working Groups, dedicating ourselves to developer-driven innovation and the advancement of open source security.
Eclipse Foundation Offers
We offer highly competitive compensation along with a comprehensive benefits package. We thank all applicants for their interest; however, only those to be interviewed will be contacted. For more information about Eclipse Foundation, please visit our website at https://eclipse.org/
Eclipse respects the dignity and independence of people with disabilities and is committed to providing accommodation and support to persons with disabilities throughout any recruitment process, once made aware of a need for accommodation. If you require any special accommodation or support during the recruitment process, please indicate in your email to us.
Join our Security Team and play a pivotal role in securing the software supply chains of numerous open source projects used globally. You'll build cutting-edge technical solutions, foster trusted relationships, and lead community-driven initiatives, contributing directly to a culture of proactive security across a diverse international developer community.
Key Responsibilities
- Develop Innovative Security Tools: Design and build advanced solutions to strengthen open source software supply chains, leveraging platforms like GitHub and GitLab for effective automation and management.
- Automate Security Best Practices: Streamline security processes through automation to ensure consistent application of best practices across various projects.
- Progress Monitoring & Reporting: Create and manage a public dashboard to transparently track and communicate ongoing security improvements to the community.
- Community Engagement: Generate insightful technical content, lead discussions, and inspire best practices, actively engaging and influencing the global developer community.
- Leadership & Collaboration: Act as a security advocate, sharing knowledge, guiding teams, and nurturing collaborative relationships across diverse open source communities.
Desired Qualifications
Note: Don't worry if you don't meet every qualification listed below. If you're excited about this role and believe you'd excel, we encourage you to apply!
- Remote Work Experience: Proven ability to excel independently and collaboratively in a remote-first work environment.
- Strong Technical Skills: Proficiency in at least one programming language (Java, Python, JavaScript, Go, or Rust) and eagerness to expand your technical expertise.
- CI/CD Knowledge: Hands-on experience with CI/CD workflows, such as GitHub Actions, GitLab CI/CD, or Jenkins.
- Open Source Passion: Demonstrated commitment to contributing to or actively participating in open source communities.
- Collaborative Mindset: Good communication skills with a proven ability to clearly articulate complex security concepts and effectively collaborate with diverse teams.
Bonus skills
Experience or knowledge in one or more of these areas will give you an edge:
- Generating Software Bill of Materials (SBOMs) using CycloneDX or SPDX
- Managing or utilizing Dependency-Track
- GitHub administration and API integrations
- Vulnerability management (security incident response perspective)
- Conducting project audits or security reviews
Why the Eclipse Foundation?
- Innovative Environment: Be part of a culture that encourages bold ideas, creative problem-solving, and collaboration.
- Continuous Growth: Access professional development opportunities and stay at the forefront of evolving technologies and security practices.
- Global Impact: Directly influence the security posture of open source software relied upon by millions around the world.
Position Details
Employment Type: Full-time employment offered in multiple countries; B2B contracts available elsewhere.
Location: Fully remote, open to candidates in Europe, Canada, and the US.
Who are we?
The Eclipse Foundation, headquartered in Belgium, is the leading open source software foundation from Europe. With 20 years of fostering innovation, we oversee 420 projects and 20 Working Groups, dedicating ourselves to developer-driven innovation and the advancement of open source security.
Eclipse Foundation Offers
We offer highly competitive compensation along with a comprehensive benefits package. We thank all applicants for their interest; however, only those to be interviewed will be contacted. For more information about Eclipse Foundation, please visit our website at https://eclipse.org/
Eclipse respects the dignity and independence of people with disabilities and is committed to providing accommodation and support to persons with disabilities throughout any recruitment process, once made aware of a need for accommodation. If you require any special accommodation or support during the recruitment process, please indicate in your email to us.
Apply for this position
Required*