Career
To strengthen and further develop our team we are looking for experienced
Open Source Compliance Auditor m/f/d
Companies drive their digital future through open innovation and benefit from shared knowledge and development capacities as well as strategic, open development and innovation alliances. They strengthen their digital sovereignty, reduce the vendor lock-in effect and improve IT security, quality and transparency through Open-Source communities.
Bitsea is specialized in auditing software systems and identifying hidden risks for companies. We support the technical due diligence and advise operators of critical infrastructure (KRITIS).
New legal requirements in the EU such as the Cyber Resilience Act (CRA) and the Digital Operational Resilience Act (DORA) require companies to maintain an accurate list of all software components ("SBOM software bill of materials") and to regularly check for known security vulnerabilities. An efficient Open-Source-Management framework and the use of suitable processes and tool chains such as Software Composition Analysis (SCA) and Software Asset Management (SAM) are prerequisites for the legally compliant and sustainable use of OSS. Bitsea supports in all aspects of Open-Source-Management so our customers are protected against a lack of compliance and cyber-attacks on the software supply chain. Bitsea is TISAX certified and provides Open Source compliance and management services in accordance with ISO/IEC 5230.