Rodeo
ResourcesPartnersSign in

Runtime

Staff Software Engineer

United Kingdom
£110k – £160k/yr
Posted 2 days ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Staff Software Engineer

Senior / Staff / Principal – Software Engineer – Provenance

£110,000–£160,000 (depending on skill-level) | UK / Ireland – Fully Remote

Position Impact Most engineers secure another team’s pipeline. Here, you’ll build the source of truth an entire industry relies on to verify what ships—and whether it’s real.

Provenance is hiring on behalf of a VC-backed software supply chain security platform. Our multi-tenant platform delivers build, secure, and ship software at enterprise scale for engineering teams across languages, containers, and OS ecosystems.

About the Role

You’ll architect and deliver a provenance ingestion service that:

  • Accepts attestations and build data from CI/CD systems, public registries, and customer pipelines.
  • Supports validation formats like SLSA, In-Toto, SBOM attestations, and Sigstore bundles.
  • Owns storage architecture for signed provenance metadata.
  • Builds the validation engine to assess cryptographic integrity and attestation compliance against configurable trust policies (e.g., SLSA levels, builder identities, key management).
  • Delivers clean, well-documented APIs exposing provenance data to customers and the wider platform.
  • Collaborates with product, customer success, and engineering to translate security requirements into mission-critical features.
  • Mentors via code review, documentation, and open technical discussions across a small, senior team.

Responsibilities

  • Design, build, and ship core parts of a provenance-based security infrastructure.
  • Drive cryptographic validation for attestation integrity and compliance.
  • Own multi-tenant security, data isolation, and audit logging, supporting at-scale SaaS platforms.
  • Partner with cross-functional teams to align on technical precision and engineering excellence.
  • Advocate for standards-based approaches in supply chain security.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.


Requirements

Must Have

  • 5+ years of production backend engineering with end-to-end ownership of complex services.
  • Strong hands-on Python or Go experience building:
    • Backend services.
    • Data pipelines (Batch/event-driven).
  • Deep working knowledge of provenance standards (SLSA, In-Toto, Sigstore, DSSE):
    • How they’re structured, signed, and serialised (e.g., provenance.json, Sigstore bundles).
  • Cryptographic fundamentals expertise:
    • Signing & verification.
    • Key rotation, transparency logs.
    • OIDC-based keyless signing.
  • Familiarity with SBOM formats (CycloneDX, SPDX) and their role in artefacts.
  • AWS experience using:
    • S3 (secure object storage).
    • RDS/Postgres (database architecture).
    • Kinesis (streaming pipelines).
    • ECS/Lambda (serverless).
  • Infrastructure-as-code with Terraform.
  • Multi-tenant SaaS operations with a focus on data isolation, permission models, and audit trails.

Nice to Have

  • Open source contributions to provenance or Sigstore/COSE projects.
  • Experience with hardware-based signing or HSMs.
  • Care for writing a robust, open technical documentation strategy—especially for complex engineering teams.

Skills & Mindset

✔ Bias for action – Ship minimum features first; iterate based on evidence. ✔ Reverse engineering skills – Parse formats while trusting no author. ✔ Performance pragmatism – Optimise hot paths once evidence is clear (avoid premature tuning). ✔ Developer empathy – Balance detail with clarity to help colleagues adopt provenance at scale.


What You Get

  • Competitive pay: £110,000–£160,000 (+ equity, see offer for specifics).
  • Private healthcare (UK/Ireland tier).
  • Flexible policies:
    • Generous PAYE/annual leave (prorated + extra PTO for senior, equity-granting roles).
    • At-home working with encompassed access to office (Lenox Square, East London; optional in-person).
  • Professional development:
    • Budget for conferences, certs, books and an emphasis on improving practice.
    • A Web3 + Security Hackathon retreat + full year membership to Jigsaw Collective (cyber skills meetup).
  • Team culture:
    • One fully senior team (~8 engineers, mixed senior leadership).
    • Regular technical retreats (hack فضول aquí owned by you).
    • Remote-first, upbeat environment (post-COVID dislikes of commutes allowed).

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Who We Are

Provenance helps engineers never guess whether their software binaries contain malicious code. Every episode of disruption (Solar Winds, Log4j, Sigstore theft) forces teams back to the broken problem of trust: “Am I being trusted to appropriately audit our thirty-thousand vendor libs?”.

Our staff team is secure codepower: building the standard adoptions for integrity-first software. Engineering starts here.


Apply Status

  • Shortlist drinks email: Initial questions (no sweeping recruitment pitches).
  • Rating phase: 3+ 1:1 chats, hitting dates sufficiently engaged/sufficient tech fit.
  • Hiring decisions in 4–6 weeks.

Notes:

  • If removing an element from your LinkedIn makes you stronger but not perfect as a fit candidate → apply.
  • Our recruiters will surface unexpected alignment by forcing a brutal outcome. No sugar-coating no-bikes. Your CV may be silenced forever if we deem it comparable to a heuristically-poisoned PIN.
Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Python
Go
Backend Services
Data Pipelines
Provenance Standards
Attestation Standards
Cryptographic Fundamentals
SBOM Formats
AWS
Infrastructure-as-Code
Multi-Tenant SaaS
Data Isolation
Audit Logging
Iterative Development

Location

United Kingdom

Sign up to applySee more jobs like this