Informacje o stanowisku
- Minimum of 3 years of practical experience in open source compliance, preferably in a regulated industry such as healthcare or medical devices
- Proven experience with CI/CD pipelines and integrating open source compliance checks into the development process
- Open Source License Expertise: Thorough understanding of open source licenses, their implications, and best practices for compliance
- CycloneDX: Demonstrable experience working with CycloneDX or similar SBOM formats
- Proficiency in managing dependencies for two or more programming languages, such as .NET/C#, Python, Java, C/C++, Node.JS/TypeScript
- Familiarity with both Linux and Windows operating systems and their interactions with open source components
- Proactive Approach: Self-driven, proactive, and able to work independently with minimal supervision
,[Software Bill of Materials (SBOM): Collaborates with software architects, senior developers and devops leads to generate a comprehensive Software Bill of Materials (SBOM) for our commercial products, including detailed information on open source components and dependencies, Review, analyze, and assess the usage of open source software in our products to ensure compliance with clients relevant regulations and licenses, including knowledge of how usage, deployment, and architecture affects compliance, Integrate open source compliance checks into our Continuous Integration and Continuous Deployment (CI/CD) pipelines, facilitating the early identification of compliance issues and minimizing compliance risks, Possess knowledge of operating systems, particularly Linux and Windows, and how they interact with command line libraries and tools. Must also be aware of container and virtual machine technologies, Create and maintain clear and concise compliance documentation, including policies, procedures, and best practices, to foster a compliant development environment, Utilize your expertise with CycloneDX, a lightweight SBOM standard, to enhance the accuracy and efficiency of our compliance processes, Stay informed about industry regulations, particularly FDA requirements, and ensure that our open source compliance practices align with current and emerging standards Requirements: .NET, Linux, CI/CD Pipelines Additionally: Sport subscription, Private healthcare, International projects.
Praca WarszawaWarszawa - Oferty pracy w okolicznych lokalizacjach
