Senior Software Engineer

We’re hiring for a UK cyber security startup building a platform that helps organisations detect malicious open-source code and secure their software supply chain in real time
.

The product continuously scans dependencies, surfaces risk clearly, and helps teams prevent compromised packages from entering the codebase — without slowing engineering down.

If you’re a strong full stack engineer who enjoys building clean, scalable product and you’re curious about cyber security, this is a chance to build something genuinely important.

Open source and third-party dependencies are now one of the biggest attack paths for modern organisations.

This team is tackling that head-on with a platform designed for both engineering and security teams — offering malware detection, deep dependency visibility, and policy enforcement to stop bad code early.

They’re also part of a leading UK cyber security accelerator programme, supporting the next generation of high-growth security startups.

You’ll join a small, high-output engineering team and build customer-facing features end-to-end — front to back to cloud.

You’ll ship frequently, own features, and have real influence over architecture and product direction.

This role includes LLM exposure, but the emphasis is practical integration via APIs (plugging LLM capabilities into workflows), not building research-heavy or RAG-first systems.

• Build and ship product features across the stack (UI → API → cloud)
• Develop back-end services in Python
  , delivering reliable, well-tested APIs
• Build responsive, intuitive front-ends in React
• Work within an AWS serverless environment (event-driven services, APIs, scalable data patterns)
• Integrate external services (including LLM APIs
  ) to enhance workflows and automation
• Collaborate closely with founders and product to shape requirements and deliver fast
• Improve reliability, performance, monitoring, and developer experience as the product scales

The platform focuses on software supply chain security, including capabilities such as:

• Detecting malicious or tampered open-source packages
• Providing deep insight into dependency trees and hidden risk
• Preventing compromised code from reaching production environments
• Helping organisations enforce security policies early in the SDLC

You’re a capable Full Stack Developer who has:

• Strong commercial experience building web applications with React and Python
• Hands-on experience in an AWS Serverless setup (Lambda, API Gateway, Dynamo
  
  DB, event-driven architectures)
• Confidence integrating external APIs, including modern LLM/AI services
• A product mindset: you care about usability, clarity, and shipping value
• Comfort working in a startup environment — ownership, pace, and ambiguity
• An interest in cyber security or secure software development (no need to be an App Sec specialist already)