Staff Software Engineer

You can work on a developer‑first platform at the centre of modern software delivery. You can build the next generation of software supply chain trust and provenance infrastructure.

You will build systems that give organisations complete traceability from source code to deployed artifact. It's not just where an artifact came from, but how it was built, what went into it, and where it was used downstream.

You will build infrastructure that captures, validates, and exposes build provenance and attestation data across CI/CD pipelines and artifact ecosystems.

This role offers significant greenfield engineering work, giving you the opportunity to shape how supply chain security and artifact traceability systems are designed from the ground up.

• Designing and building provenance ingestion services for CI/CD systems and artifact registries
• Capturing and storing signed provenance metadata and artifact relationships
• Building validation engines to verify cryptographic integrity and trust policies
• Developing APIs that expose traceable supply chain data to customers and internal systems
• Solving large‑scale ingestion, storage, and query challenges around artifact and pipeline data

• Strong domain knowledge in artifact management and software supply chains
• Experience working with xcfaprz provenance, attestations, SBOMs, or build metadata
• Strong backend engineering experience (Python preferred)
• Experience designing data ingestion pipelines and scalable backend services
• Familiarity with cloud-native systems and multi-tenant SaaS platforms

If you enjoy building systems that sit at the heart of how software is built, secured, and delivered this is the kind of role that will keep you interested.