Staff Software Engineer

Posted Yesterday
Be an Early Applicant
Hyderabad, Telangana, IND
In-Office
Senior level
Software • Cybersecurity
Sonatype is the software supply chain management company.
The Role
Lead architecture and delivery of agentic-first, data-engineering capabilities: design multi-agent workflows and orchestration, own data platform components, define agenting practices, ensure performance/security for software supply chain threats, drive cross-functional execution, and mentor senior engineers to deliver enterprise-grade features at scale.
Summary Generated by Built In
Sonatype is the software supply chain security company. We provide the world’s best end-to-end software supply chain security solution, combining the only proactive protection against malicious open source, the only enterprise grade SBOM management and the leading open source dependency management platform. This empowers enterprises to create and maintain secure, quality, and innovative software at scale.

As founders of Nexus Repository and stewards of Maven Central, the world’s largest repository of Java open-source software, we are software pioneers and our open source expertise is unmatched. We empower innovation with an unparalleled commitment to build faster, safer software and harness AI and data intelligence to mitigate risk, maximize efficiencies, and drive powerful software development.

More than 2,000 organizations, including 70% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains.


About the Role

As an agentic-first Staff Software Engineer, you will lead the design and delivery of enterprise-grade, agentic-first capabilities within Data Engineering Space. You'll set technical direction for a major product area, orchestrate fleets of agents across parallel workstreams as your primary mode of work, and define the agentic engineering practices that other teams will learn from. You'll partner with Principal engineers on the hardest technical decisions and mentor Senior engineers to deliver capabilities that help enterprises secure their software supply chains at massive scale.
 
Why You Will Want to Apply
  • Own the architecture of agentic-first features in a product used by 15 million developers and 70% of the Fortune 100.
  • Practice a fundamentally new way of building software — long-running, multi-agent development — alongside Staff and Principal engineers who are defining the craft.
  • Work on the hardest problems at the intersection of AI, distributed systems, and software supply chain security — a space where the industry playbook is still being written.
  •  Shape the technical roadmap for Nexus, set the engineering hiring bar, and mentor Senior engineers who will carry the craft forward.

What You Will do

    • Architect & Lead With Agents: Drive the technical design of major agentic-first subsystems — service architecture, data models, and agent/tool integrations — by running long-running, multi-agent workflows across decomposition, orchestration, implementation, testing, and review. Own and evolve parts of our data platform (e.g., Airflow, dbt, Spark, Redshift, or Snowflake). Architect and optimize data models and storage solutions for analytics and operational use
    •  
      • Own a Product Area: Take major initiatives from ambiguous problem statements through technical design, multi-team execution, rollout, and long-term operability.
      •  
        • Verification Over Generation, at Scale: Spend your time on direction, review, and taste rather than line-by-line coding. Define the evals, harnesses, guardrails, and review rituals that let your team confidently ship code no human typed.
        •  
          • Define the Practice: Set the bar for how Sonatype engineers work with agents. Shape internal playbooks, tooling, and rituals; train Senior engineers in the craft; and raise the ceiling on what's possible.
          •  
            • Architecture, Security & Reliability: Own non-functional requirements for your area — performance, reliability, and security — with particular attention to software supply chain threats (malicious packages, dependency confusion, provenance, SBOM accuracy).
            •  
              • Cross-functional Leadership: Partner with Product, Security Research, UX, and Support leaders to translate ambiguous customer needs into concrete, shippable technical plans; conduct deep design reviews; and raise the quality bar through thoughtful mentorship. Collaborate with data scientists, analysts, and engineers to deliver trusted, high-quality datasets.

Who You Are

    • Long-running Agentic Developer: Multi-step, long-running agent workflows are your default way of building software — well beyond Copilot-style autocomplete. You routinely orchestrate fleets of agents in parallel across planning, coding, testing, and review, and your own time is spent on direction, verification, and taste rather than generation.
    •  
      • Multi-agent Orchestration at Depth: Hands-on experience designing, running, and scaling multi-agent systems (e.g., Claude Code, Codex, Cursor background agents, custom orchestrators, LangGraph-style graphs) — including MCP tooling, shared context and memory, agent handoffs, and robust eval harnesses. You've shipped production work this way and have strong opinions on what holds up at scale.
      •  
        • Verification-first Mindset: You've internalized that the new leverage point is human judgment over machine generation. You define the evals, test harnesses, observability, and review workflows that let a team confidently ship code no one personally typed.
        •  
          • Shapes Leading-edge Practice: You don't just adopt agentic workflows — you define them. You've led internal rollouts, published, open-sourced, or otherwise pushed the state of the art on how engineers work alongside agents, and have a clear point of view on where the craft is heading.
          •  
            • Product Engineering Mindset: Half product, half engineering. You make product decisions independently and drive scope, trade-offs, and sequencing without constant PM hand-holding.
            •  
              • Focused on What Matters: You want to build mission-critical products that drive revenue and transform how customers build software.
              •  
                • Staff-level Engineering Skills: 7+ years of professional software development, with a track record of leading multi-quarter technical initiatives that span multiple teams or services.
                •  
                  • DevSecOps & Supply Chain Depth: Working knowledge of software supply chain security — SBOM formats (CycloneDX, SPDX), SCA, SLSA provenance, Sigstore/cosign signing, vulnerability analysis (OSV, NVD), and common attack patterns against package ecosystems.
                  •  
                    • Deeply Curious: You push agentic tools to their limits — probing where they work, where they break, and how to make them better. You're energized by being early in a fundamentally new way of building software.

What We Are Proud Of

    • 2025 Visionary in Gartner® Magic Quadrant™ for Application Security Testing!
    • 2025 AI Compliance Solution of the Year - AI Breakthrough Awards
    • 2025 DEVIES Award to our SBOM Manager for a new product for its innovation and impact in developer technology
    • 2024 Industry Leader in Forrester-Wave for Software Composition Analysis (2024 Q4 report)
    • Constellation AST Shortlist: Sonatype has been listed on the Constellation ShortList™ for Application Security Testing for 2024
    • Data Breakthrough Awards: Sonatype was announced as a 2024 winner in the "Open Source Data Solution of the Year."
    • SD Times: Best in Show Security
    • Fast Company Best Workplaces for Innovators 2024
    • The Herd Top 100 Private Software Companies 2024.
    • Diversity & Inclusion Working Groups
    • Parental Leave Policy
    • Paid Volunteer Time Off (VTO)

At Sonatype, we value diversity and inclusivity. We offer perks such as parental leave, diversity and inclusion working groups, and flexible working practices to allow our employees to show up as their whole selves. We are an equal-opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you have a disability or special need that requires accommodation, please do not hesitate to let us know.



Skills Required

  • 7+ years professional software development with history leading multi-quarter, multi-team technical initiatives
  • Hands-on experience designing, running, and scaling multi-agent systems and orchestrators
  • Experience owning or evolving data platform components (e.g., Airflow, dbt, Spark, Redshift, Snowflake) and data models for analytics/operations
  • Working knowledge of software supply chain security: SBOM formats (CycloneDX, SPDX), SCA, SLSA provenance, Sigstore/cosign, vulnerability analysis (OSV, NVD)
  • Proven ability to define evals, test harnesses, observability, and review workflows for verification-first development
  • Cross-functional leadership and product engineering mindset to translate ambiguous needs into shippable technical plans
  • Experience mentoring and raising engineering practices across senior-level engineers
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Fulton, MD
600 Employees
Year Founded: 2008

What We Do

The Sonatype journey started almost 15 years ago, just as the concept of “open source” software development was gaining steam. From our humble beginning as core contributors to Apache Maven, to supporting the world’s largest repository of open source components (Central), to distributing the world's most popular repository manager (Nexus), we’ve played a meaningful role in helping the world embrace the power of open innovation. We empower developers and security professionals with intelligent tools to innovate more securely at scale. Our platform addresses every element of an organization’s entire software development life cycle, including third-party open source code, first-party source code, and containerized code. Sonatype identifies critical security vulnerabilities and code quality issues and reports results directly to developers when they can most effectively fix them. This helps organizations develop consistently high-quality, secure software which fully meets their business needs and those of their end-customers and partners. More than 2,000 organizations, including 70% of the Fortune 100, and 15 million software developers rely on our tools and guidance to help them deliver and maintain exceptional and secure software.

Why Work With Us

We're on a mission to change how the world innovates by making software development easier. Already used by 15 million developers, we have lofty goals for our technology to be in the hands of every engineering team. And, we need you to do that. Join us!

Gallery

Gallery

Similar Jobs

DigitalOcean Logo DigitalOcean

Staff Software Engineer

Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
In-Office
Hyderabad, Telangana, IND
1400 Employees

Sonatype Logo Sonatype

Staff Software Engineer

Software • Cybersecurity
In-Office
Hyderabad, Telangana, IND
600 Employees

Sonatype Logo Sonatype

Staff Software Engineer

Software • Cybersecurity
In-Office
Hyderabad, Telangana, IND
600 Employees

Blue Yonder Logo Blue Yonder

Staff Software Engineer

eCommerce • Logistics
In-Office
2 Locations
5001 Employees

Similar Companies Hiring

Hanover Park Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
42 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account