To strengthen and further develop our team we are looking for experienced

Open Source Compliance Auditor

Open Source Compliance Auditor

Companies drive their digital future through open innovation and benefit from shared knowledge and development capacities as well as strategic, open development and innovation alliances. They strengthen their digital sovereignty, reduce the vendor lock-in effect and improve IT security, quality and transparency through Open-Source communities.


Bitsea is specialized in auditing software systems and identifying hidden risks for companies. We support the technical due diligence and advise operators of critical infrastructure (KRITIS).


New legal requirements in the EU such as the Cyber Resilience Act (CRA) and the Digital Operational Resilience Act (DORA) require companies to maintain an accurate list of all software components ("SBOM software bill of materials") and to regularly check for known security vulnerabilities. An efficient Open-Source-Management framework and the use of suitable processes and tool chains such as Software Composition Analysis (SCA) and Software Asset Management (SAM) are prerequisites for the legally compliant and sustainable use of OSS. Bitsea supports in all aspects of Open-Source-Management so our customers are protected against a lack of compliance and cyber-attacks on the software supply chain. Bitsea is TISAX certified and provides Open Source compliance and management services in accordance with ISO/IEC 5230.

Roles & Responsibilities

Take over the operational and technical responsibility for complex customer projects.

Use our toolchain to analyze Open Source software compliance, software development processes and prepare expert reports. Automate software composition analysis and FOSS compliance.

Keep our analysis tools up to date with the latest technologies.

Provide actionable advice on case by case basis to our customers on project-specific issues within the context of FOSS licensing and software architecture .

Propose and manage initiatives to increase the efficiency and effectiveness when working with FOSS. Support Bitsea research projects.

Give trainings and evolve our overall FOSS enablement program.

Network with internal & external experts and partners and exchange on proven practices and state-of-the-art FOSS management.

Skills required

Excellent university degree, preferably in computer science, applied informatics or in a related field. Strong analytical and problem solving skills.

4+ years of experience in software engineering, out of which 2+ years focused on an area like FOSS or IT governance, preferably in a (software) engineering company.

Solid understanding of the principles of Free Software and Open Source and its legal foundation.

Hands-on-experience with common SCA tools such as Flexera SCA, BlackDuck, ORT, Fossology, ScanCode.

Self-dependent working style including analytical, and problem-solving skills paired with drive and a solution oriented ‘can-do’-attitude.

Experience working closely with legal teams on software licensing issues.

Certification in Open Source compliance field.

Fluent in English.

We offer

Exciting projects and an international working environment. For us, taking responsibility means more than just paying attractive salaries: We give more so you can give more. Sustainable management is key for Bitsea.

  • • Occasional on-site visits in Europe.
  • • Yearly performance bonus.
  • • Flexible working hours.
  • • Opportunities for further skill development: Continuing education and training.
  • • Health insurance.
  • • Company pension plan.
  • • Team events and celebrations.
  • • Free snacks, fruits and beverages.


Then please send us your complete application documents including your salary expectations and earliest starting date to:

Bitsea GmbH
Human Resources

Schlossstraße 7MAILTELEFON
53757 St. 2241 894 26 15
Schlossstraße 7
53757 St. Augustin
+49 2241 894 26 15