Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to enhance software security and manage supply chain risks.
- Company: Bloomberg empowers over 9,000 engineers with innovative tools for productivity.
- Benefits: Enjoy a dynamic work environment with opportunities for remote work and professional growth.
- Why this job: Make a real impact on software security while collaborating with diverse teams.
- Qualifications: Experience in Python or Go and a passion for software security is essential.
- Other info: Be part of a cutting-edge team influencing industry standards and practices.
The predicted salary is between 48000 - 72000 £ per year.
In Bloomberg, the Developer Experience (DevX) group provides services and tooling that empowers over 9,000 engineers with their productivity needs and enables them to write high quality, performant and secure code. What goes into making Bloomberg’s software? Where do these components come from? How will we know if any are defective? How can we protect Bloomberg from malicious actors while still benefiting from open source? These are the questions you’ll help us answer!
The Software Composition Analysis and Security (SCAnS) team in DevX plays a foundational role in securing Bloomberg’s software supply chain (SSC) by enabling engineers to use open source and third party software safely, in an operationally resilient manner. Our products integrate with build and analysis systems to ensure software component metadata (as SBOMs) is available throughout the SSC to build a software inventory, affording license and vulnerability identification firm-wide. We control the ingress of components to prevent malware from entering the network, which provides us a unique opportunity to help build this inventory.
Our team is responsible for:
- Providing SBOM tooling and helping integrate it into our supply chain
- Working across ecosystems to adjust our tooling to produce the best quality results
- Controlling and tracking the ingress of software components into the firm’s network
- Solving the firm’s operational resiliency needs for software ingress and component analysis
We are looking for a Senior Software Engineer to drive these projects in the SCAnS team.
What’s in it for you? As an engineer in this growing team, you will be at the heart of Bloomberg’s efforts to secure our software supply chain. This domain is extremely important for the firm’s security and operational resilience posture, and your work will be equally impactful and leveraged by all engineering teams. With upcoming regulations around Operational Resilience such as DORA, Software Supply Chain security is a hot topic in the industry and a very dynamic space to be involved in. Our team leverages open-source software (e.g. Syft), and also influences the wider industry on standards for SBOMs and SSC. We also have home-grown solutions for specific problems (e.g. the domain of Ingress), providing a broad mix of technologies and approaches.
We will trust you to:
- Collaborate across multiple teams to perform cross-cutting work
- Work with users to understand their needs
- Develop and deploy scalable solutions to meeting our supply chain needs
- Identify risks with our supply chain end-to-end
You’ll need to have:
- Experience in Python or Go
- Knowledge of the software development lifecycle
- A passion for improving the firm’s security posture
- A drive to partner and collaborate with users and team members alike
We’d love to see:
- Experience making upstream contributions
- A history of making changes that involve multiple teams
- Knowledge of software supply chains, SBOMs, and how they are used
- An awareness of vulnerability, malware and licensing challenges in third party software
Contact Detail:
Golden Bees Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Software Engineer – DevX SCAnS
✨Tip Number 1
Familiarise yourself with the latest trends in software supply chain security. Understanding regulations like DORA and how they impact the industry will show your commitment to the role and help you engage in meaningful conversations during interviews.
✨Tip Number 2
Network with professionals in the field of software security and supply chains. Attend relevant meetups or webinars, and connect with current employees at Bloomberg on platforms like LinkedIn to gain insights into their work culture and expectations.
✨Tip Number 3
Demonstrate your technical skills by contributing to open-source projects related to SBOMs or software security. This not only showcases your expertise but also your passion for the field, making you a more attractive candidate.
✨Tip Number 4
Prepare to discuss real-world scenarios where you've improved security measures or collaborated across teams. Highlighting specific examples will illustrate your problem-solving abilities and teamwork skills, which are crucial for this role.
We think you need these skills to ace Senior Software Engineer – DevX SCAnS
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Python or Go, as well as your understanding of the software development lifecycle. Emphasise any previous work related to software supply chains and security.
Craft a Compelling Cover Letter: In your cover letter, express your passion for improving security postures and your collaborative approach. Mention specific projects where you've worked across teams to solve complex problems, particularly in relation to software supply chains.
Showcase Relevant Projects: If you have experience with open-source contributions or have developed tools related to SBOMs, make sure to include these in your application. Highlight how these experiences align with the responsibilities of the role.
Prepare for Technical Questions: Be ready to discuss your technical skills in Python or Go during the interview process. Prepare examples of how you've used these languages to develop scalable solutions or improve operational resilience in past roles.
How to prepare for a job interview at Golden Bees
✨Understand the Role and Responsibilities
Make sure you have a clear understanding of what the Senior Software Engineer role entails, especially in relation to software supply chain security. Familiarise yourself with concepts like SBOMs, operational resilience, and how they apply to Bloomberg's DevX group.
✨Showcase Your Technical Skills
Be prepared to discuss your experience with Python or Go, as well as your knowledge of the software development lifecycle. Bring examples of past projects where you've implemented scalable solutions or contributed to open-source software.
✨Demonstrate Collaboration Abilities
Since the role involves working across multiple teams, highlight your experience in collaborative projects. Share specific instances where you successfully partnered with users or other teams to achieve a common goal.
✨Prepare for Security Discussions
Given the focus on improving the firm's security posture, be ready to discuss your understanding of vulnerabilities, malware, and licensing challenges in third-party software. Show your passion for security and how it can be integrated into the software supply chain.
