The Elevator Pitch

In a world where software supply chain security is becoming paramount, TestifySec stands at the forefront, safeguarding digital assets. As a burgeoning startup, our mission is to redefine the way organizations approach and implement software supply chain security. We believe that everyone deserves secure software. This is best achieved through open standards and open source. The Software Engineer for Open Source plays a vital role helping enable, grow, and sustain our open source projects and their communities.

Why do we need you?

Securing the software supply chain is a complex challenge, and doing it at the right time – during software development – is even more demanding. We are seeking a dedicated open source developer to join our team and play a vital role in developing and maintaining our open source projects. These projects are designed to seamlessly integrate into the software development lifecycle, ensuring security-by-default.

Our open source project, Witness, builds upon the CNCF project in-toto, leveraging its attestations and policies. Additionally, our project Archvista facilitates the graphing and storage of these attestations, simplifying their distribution and consumption. As we strive to keep pace with evolving open standards for supply chain security, we're looking for someone who can not only contribute technically but also foster a vibrant and inclusive community, encouraging feedback and collaborative contributions.

Witness is highly adaptable and can be integrated into various CI/CD systems to generate attestations for the entire development lifecycle. This integration process can sometimes be less straightforward than desired. Our ultimate aim is to make it effortless and transparent for developers and operators. By actively engaging with the open source communities supporting these projects, you will help us achieve this crucial goal.

Success in the Role:

Performance goals over the first 3 months:

In the first 30 days

• Achieve a broad understanding of the landscape around software supply chain security
• Dive into TestifySec's open source projects: Witness and Archivista
• Learn about their foundational technology, in-toto
• Begin attending open source community meetings
• Contribute to documentation to improve the contributor experience
• Create your first Witness attestor plugin with the support of the team

In the first 60 days

• Demo your new plugin at a community meeting
• Respond to and triaging Github issues
• Review and provide feedback on project Pull Requests
• Begin implementing your first new Witness or Archivista feature
• Engage with additional relevant open source projects

In the first 3 months

• Influence the roadmap and direction of Witness and Archivista
• Represent the end users and community to the rest of the TestifySec team
• Organize and lead community meetings
• Contribute to additional relevant open source projects

Team Leadership and Culture

In this role, you'll be working closely with John Kjell, our Director of Open Source. John brings a wealth of experience from his time at VMware and Pivotal, where he's developed a deep appreciation for the positive impact that open source can have on shaping our world for the better. John's leadership approach is all about fostering an open exchange of ideas and sharing context; enabling the team to feel empowered to make their own decisions with their unique skills and perspective.

Our Core Values

• Trust: We believe in the power of trust as the cornerstone of all our engagements, defined by Competency, Consistency, Caring, and Communication.
• Innovation: Our commitment is to solve novel problems for our customers, balancing our focus on value-driven innovation.
• Customer Centric: Our goal is to solve pressing issues for our customers, ensuring that our solutions are tailored to their unique needs.
• Collaboration: We champion internal and external collaboration, valuing the shared ideas that drive our solutions and our engagement with the open-source community.
• Empathy: We prioritize the human element in all our interactions, understanding and respecting each individual's unique perspective and emotional landscape.
• Adaptability: Our foundation is built on responsiveness and the ability to swiftly adapt to the evolving needs of our customers and the industry.

Benefits of Working at TestifySec

• Comprehensive health, vision, and dental coverage
• Remote-first workplace
• Pioneering role in software supply chain security
• Dynamic and innovative startup environment

Equal Employment Opportunity Statement

TestifySec champions diversity and inclusivity. We're committed to a workspace free from discrimination and harassment, reflecting our values of empathy and collaboration.