Open Source Compliance Officer

Join us on our transformation journey to the digital future
At Volvo Group Digital & IT, we have a clear ambition to enable value creation at scale for the Volvo Group. With a new product centric operating model and digital technologies, we will produce digital offerings that are profitable, scalable, and differentiated. With Volvo Group Digital & IT, you will be part of a global and diverse team of highly skilled professionals, who learn continuously and embrace change to stay ahead. We have a very important role to play in reaching the Volvo Group ambitions for 2030. Do you want to be part of our transformation journey towards becoming the digital capability of the Group? The time is now.

Role Description
We are now looking for an Open Source Compliance Officer to join our Application Security Platform team. We are looking for someone who has a real interest and passion for Open Source Governance and has a good technical background in application security, especially Software Composition Analysis. Your ability to learn new things, to inspire others around you and your excellent communication skills maybe just what we are looking for. You have a continuous improvement mind-set and your experience as a senior developer or IT Architect is a great foundation to take this exciting step in your career.

You will:
  • Work with delivery teams on results of Software Composition Analysis scans.
  • Provide auditors' expertise and know-how to Application delivery teams that use Open Source software in 1200+ applications.​
  • Drive all open source compliance activities.
  • Be accountable for building and leading the Open Source Compliance Team.
  • Coordinate source code scans.
  • Contribute to development and implementation of compliance training and education materials.
  • Drive improvements in DevSecOps Transformations in relation to open source compliance.
  • Use tools like Synopsis BlackDuck or Sonatype NexusIQ to identify the OSS used to develop a software product, as well as identifying open source licenses.
  • Support teams in how to analyse, assess, and respond to various internet threats in the open source domain.
  • Be an open source security subject matter expert and answer application security questions, helping development teams to build secure applications.
  • Advise Delivery Organization leadership team on how to apply application security across its products.
Your Experience:
  • You are a strong communicator that is comfortable working both close to development teams as well as report and inform upper management on the status of opensource compliance and vulnerabilities.
You already have:
  • Solid software engineering experience in one or more general purpose languages and strong experience in IT Architecture.
  • Experience with CI/CD pipelines.
  • A good understanding of application security with awareness of OWASP Top 10 vulnerabilities and OWASP ASVS requirements.
  • Experience with BlackDuck or other relevant tool for creating open source BOM.
  • Good understanding of opensource licensing and compliance.
  • A desire to scale security through education and compliance.
  • Strong technical background, including several years’ experience with software architecture design.
It is an advantage to:
  • Have experience with security maturity models frameworks like OWASP SAMM or BSIMM.
  • Experience analyzing and improving product and software security at scale is an advantage.
  • Have experience in implementing Application Security Testing processes & tools is an advantage.
What we can offer you:
  • Application security is an area of growing importance. While we can’t offer you an effortless job, we can offer you a chance to be part of an exciting, growing and evolving domain.
  • We are ready to help you develop and gain experience in areas you need to be a successful Open Source Compliance Officer.
  • Our team is fun to work with, diverse and we are all passionate about developing, supporting and helping others in many aspects of software development.
We are happy to get your application!

The Volvo Group drives prosperity through transport solutions, offering trucks, buses, construction equipment, power solutions for marine and industrial applications, financing and services that increase our customers’ uptime and productivity. Founded in 1927, the Volvo Group is committed to shaping the future landscape of sustainable transport and infrastructure solutions. Countless career opportunities are offered across the group’s leading brands and entities that share a culture of Trust, Passion, High Performance, Change and Customer Success. 

Group Digital & IT has the ambition to enable value creation at scale for the Volvo Group. Digital solutions are becoming more and more key in the industries, where we are operating. The solutions and emerging technologies, provided by Group Digital & IT, enable our customers and their customers to do more with less, better for others and best for the future.

We are 3,600 employees located in more than 30 countries, present at all major Volvo Group locations, and we are working in a completely global organization.

In Group Digital & IT we strive for something bigger, we are truly customer centric, and we collaborate with inclusion, together cross the Volvo Group. We learn to stay ahead, we are curious and eager to acquire new and deeper knowledge, both as individuals and as teams.

Vi vill lära känna dig



Resan har startat! Du kommer att motta en bekräftelse via email så snart du har skickat din ansökan. Du kan fortsatt uppdatera din personliga profil genom att logga in på ditt konto. Det rekryterande teamet kommer nu att titta på din ansökan tillsammans med den rekryterande chefen. Utvalda kandidater kommer därefter att kontaktas med information om nästa steg.


Liknande jobb

Advanced Design Manager Technology Göteborg, Sverige Publicerad: 
Global Component Responsible, Fuel Filtration Technology Göteborg, Sverige Publicerad: 
Group Manager Battery Cell and Module Evaluation & Analysis, Volvo Technology Göteborg, Sverige Publicerad: