Software Security Engineer

at Nvidia
📍 Santa Clara, United States
USD 120,000-235,800 per year
MIDDLE
✅ On-site

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 3 Go @ 5 Jenkins @ 3 Python @ 5 GitHub @ 3 CI/CD @ 3 Communication @ 6 Angular @ 5 API @ 3 OSS @ 3 Compliance @ 3

Details

The NVIDIA Product Security Team is seeking a hands-on engineer to join the Secure Development Platform team and help deliver scalable solutions that enable secure, efficient, and auditable software releases. The role focuses on building and evolving NVIDIA's Legal Compliance Automation Platform to identify and reduce open source license risk, ensure compatibility with Software Open License (SOL) policies, and streamline legal compliance across development and release workflows.

Responsibilities

  • Design and implement full stack applications to automate secure and compliant software release workflows.
  • Streamline the legal intake process by simplifying how developers register OSS usage and request license approvals through automation and smarter defaults.
  • Build backend services and integrations to detect, assess, and track open source license usage across source code, containers, and binary artifacts.
  • Develop APIs and tools that surface license risks to developers early in the lifecycle and enable secure-by-default release pipelines.
  • Build agentic workflows to improve license data quality, resolve metadata gaps, and offer guidance for low-risk OSS usage scenarios.
  • Integrate with internal platforms for SBOM generation, license risk analysis, vulnerability scanning, and PLC readiness to ensure SOL-aligned releases.
  • Contribute to standardizing license classification, remediation workflows, and policy guardrails across teams.
  • Collaborate closely with Engineering, Legal, and DevSecOps teams to align platform capabilities with evolving compliance requirements.

Requirements

  • Bachelor’s degree in Computer Science, Information Security, or equivalent experience.
  • 3+ years of software engineering experience, preferably building developer or compliance platforms.
  • Proficiency in Python and/or Go for backend services and platform logic.
  • Experience designing REST APIs and deploying services in containerized, cloud-native environments.
  • Familiarity with open source license types (e.g., GPL, Apache, MIT) and their legal implications.
  • Strong understanding of SBOM formats (e.g., SPDX, CycloneDX) and license detection tools.
  • Solid experience with CI/CD workflows and developer toolchains (e.g., GitHub, Jenkins, GitLab).
  • Strong collaboration and multi-functional communication skills.

Preferred / Nice to Have

  • Experience building or integrating AI/agentic systems that support reasoning over license metadata or compliance guidance.
  • Hands-on experience with legal compliance platforms, OSS license management, or policy-as-code implementations.
  • Frontend proficiency with Angular and/or ReactJS for building intuitive UIs for legal or compliance insights.
  • Experience integrating SCA (Software Composition Analysis) tools and managing remediation at scale.
  • Background working with legal, open source, or policy governance teams in fast-paced product environments.

Compensation & Benefits

  • Base salary ranges by level (USD):
    • Level 2: 120,000 - 189,750 USD
    • Level 3: 148,000 - 235,750 USD
  • You will also be eligible for equity and benefits (see NVIDIA benefits page).

Additional Information

  • Location: Santa Clara, CA, United States (on-site)
  • Employment type: Full time
  • Applications accepted at least until August 19, 2025
  • NVIDIA is an equal opportunity employer and committed to fostering a diverse work environment.