Software Engineer – Software Supply Chain Security / SBOM Compliance
Spectraforce
San Diego, California
2 hours ago
Job Description
Job Title: Software Engineer – Software Supply Chain Security / SBOM Compliance
Location: San Diego California
Duration: 7 Months
Job Summary
This role focuses on designing, developing, and validating embedded and cloud-edge software with strong emphasis on Software Bill of Materials (SBOM) standards, software supply chain security, and EU Cyber Resilience Act (CRA) compliance. The position supports secure software development, automation, and continuous compliance through DevSecOps practices.
Top 5 Required Skills
1. SBOM Standards & Tooling
Deep knowledge of SPDX and CycloneDX formats
Experience with SBOM generation tools such as Syft, SPDX tools, and CycloneDX CLI
Ability to validate SBOMs against Cyber Resilience Act (CRA) requirements, ensuring machine-readable formats and complete metadata
2. Cybersecurity Compliance
Demonstrated experience applying EU Cyber Resilience Act (CRA) compliance requirements
Expertise in embedded and cloud-edge environments
Strong understanding of build systems, toolchains, and secure software development practices
3. Software Supply Chain Security
Experience with software provenance, component analysis, and vulnerability scanning
Hands-on experience with Software Composition Analysis (SCA) tools such as Snyk and Black Duck
Ability to integrate SBOM workflows into CI/CD pipelines for continuous compliance
4. Integration & Automation
Experience with DevOps / DevSecOps practices
Knowledge of automation frameworks for SBOM generation, validation, and distribution
5. Communication & Collaboration
Strong ability to communicate effectively with cross-functional teams
Capable of contributing to documentation, reviews, and stakeholder discussions
Principal Duties & Responsibilities
Level of Responsibility
Education & Experience Requirements
At SPECTRAFORCE, we are committed to maintaining a workplace that ensures fair compensation and wage transparency in adherence with all applicable state and local laws. This position’s starting pay is: $ 55.00/hr.
Location: San Diego California
Duration: 7 Months
Job Summary
This role focuses on designing, developing, and validating embedded and cloud-edge software with strong emphasis on Software Bill of Materials (SBOM) standards, software supply chain security, and EU Cyber Resilience Act (CRA) compliance. The position supports secure software development, automation, and continuous compliance through DevSecOps practices.
Top 5 Required Skills
1. SBOM Standards & Tooling
Deep knowledge of SPDX and CycloneDX formats
Experience with SBOM generation tools such as Syft, SPDX tools, and CycloneDX CLI
Ability to validate SBOMs against Cyber Resilience Act (CRA) requirements, ensuring machine-readable formats and complete metadata
2. Cybersecurity Compliance
Demonstrated experience applying EU Cyber Resilience Act (CRA) compliance requirements
Expertise in embedded and cloud-edge environments
Strong understanding of build systems, toolchains, and secure software development practices
3. Software Supply Chain Security
Experience with software provenance, component analysis, and vulnerability scanning
Hands-on experience with Software Composition Analysis (SCA) tools such as Snyk and Black Duck
Ability to integrate SBOM workflows into CI/CD pipelines for continuous compliance
4. Integration & Automation
Experience with DevOps / DevSecOps practices
Knowledge of automation frameworks for SBOM generation, validation, and distribution
5. Communication & Collaboration
Strong ability to communicate effectively with cross-functional teams
Capable of contributing to documentation, reviews, and stakeholder discussions
Principal Duties & Responsibilities
- Design, develop, modify, and validate embedded and cloud-edge software applications
- Analyze user needs and software requirements to optimize system efficiency
- Design and implement software modules for products and systems
- Participate in design, coding, unit testing, debugging, and integration activities
- Conduct code reviews, regression testing, and issue triage to ensure software quality
- Collaborate with project teams to meet technical and schedule objectives
- Write and maintain technical documentation
Level of Responsibility
- Works under general supervision
- Decisions may impact work beyond the immediate team
- Requires strong verbal and written communication skills
- May require basic negotiation, influence, and tact
- Tasks require independent planning, problem-solving, and prioritization
Education & Experience Requirements
- Bachelor’s Degree in Engineering, Computer Science, Information Systems, or related field with 2+ years of software engineering experience OR Master’s Degree in Engineering, Computer Science, Information Systems, or related field with 1+ year of software engineering experience OR PhD in Engineering, Computer Science, Information Systems, or related field
Applicant Notices & Disclaimers
- For information on benefits, equal opportunity employment, and location-specific applicant notices, click here
At SPECTRAFORCE, we are committed to maintaining a workplace that ensures fair compensation and wage transparency in adherence with all applicable state and local laws. This position’s starting pay is: $ 55.00/hr.