FOSSA Logo

FOSSA

Provides SBOM and software supply chain risk management, automating open source compliance and vulnerability solutions.
Overview Jobs

About FOSSA

We founded FOSSA in 2015 to build a software supply chain risk management platform. We help companies generate, analyze, and use Software Bill of Materials (SBOMs) in various formats to meet compliance standards and improve software transparency.

Our platform also offers Software Composition Analysis (SCA) tools. These include automated open source license compliance management and solutions for prioritizing vulnerabilities. We work to apply security, license compliance, and quality standards to third-party code.

The FOSSA platform scans packages, containers, SBOMs, binaries, and code snippets. It provides guided steps to fix critical vulnerabilities, license problems, and End-of-Life (EoL) components. We also use automated policy enforcement to prevent future issues.

In 2024, we acquired StackShare. We also introduced fossabot, an AI agent designed to help with strategic dependency updates. Our software has been downloaded almost two million times and has performed nearly 100 million open source software scans.

Mission & Values

Our mission at FOSSA is to ensure that teams don’t have to choose between speed, compliance, and security when working with software. We want open source software to be widely used, secure, and valuable for everyone.

We operate on core principles of transparency, accountability, and passion. Our values emphasize being open, inclusive, and transparent. We foster a low-ego, team-first environment and build strong relationships.

We believe in moving fast and meaning it, which means taking initiative and executing quickly with clear purpose. We are also committed to exploration, constantly innovating our products and processes, embracing new ideas, and looking for opportunities to grow.

Team & Culture

We are a fast-paced, distributed, and remote-friendly company with 51-200 employees. Our culture encourages quick learning, experimentation, and taking ownership of important work.

We maintain a low-ego, team-first environment and build strong relationships based on integrity and accountability. We put our people first, focusing on their happiness, well-being, and comfort, and we celebrate our team members’ milestones.

Benefits & Perks

We offer comprehensive healthcare, dental, and vision coverage, covering up to 100% of employee premiums and 75% for dependents. We also provide 12 weeks of paid parental leave.

Our flexible benefits include a Flexible Spending Account (FSA), Health Savings Account (HSA), and Dependent Care options. We believe in work-life balance, offering unlimited PTO, dedicated mental health days, and paid holidays.

For retirement planning, we provide a 401K plan through Empower401k. Employees also have access to services like One Medical, Talkspace, Teladoc, and Health Advocate.

We provide competitive salary and equity packages, along with opportunities for professional growth and career development. Remote work options are available.

Frequently Asked Questions

What products or services does the company offer?

FOSSA provides an SBOM and software supply chain risk management platform. It offers Software Composition Analysis (SCA) capabilities, including automated open source license compliance management and vulnerability prioritization solutions. The platform helps generate, ingest, analyze, and operationalize SBOMs, and scans packages, containers, SBOMs, binaries, and snippets. It also offers fossabot, an AI agent for strategic dependency updates.

What are the employee benefits?

Employees receive healthcare, dental, and vision coverage (up to 100% for employees, 75% for dependents), 12 weeks of paid family leave, flexible benefits (FSA, HSA, Dependent Care), unlimited PTO, and a 401K plan. Additional benefits include One Medical, Talkspace, Teladoc, and Health Advocate. The company also offers competitive salary and equity packages, and opportunities for professional growth.

What is the company's work culture like?

FOSSA fosters a remote-friendly, fast-paced, and distributed work environment with a low-ego, team-first approach. The culture emphasizes fast learning, experimentation, ownership, transparency, accountability, and passion. The company is committed to innovation and puts a high value on employee happiness, wellness, and comfort, recognizing personal and professional milestones.

How does FOSSA help its customers with compliance?

FOSSA automates open source license compliance by scanning codebases, identifying open source components, analyzing licenses, flagging policy violations, and generating required attribution documents. It integrates into development workflows to provide immediate feedback on license issues, helping unify developer and legal teams. The platform provides audit-grade license scanning and policy enforcement to manage software supply chain risks.

When was FOSSA founded?

FOSSA was founded in 2015.

What industries and sectors does FOSSA specialize in?

FOSSA is active in the Open Source Licensing, Open Source Vulnerability Management, Open Source Compliance, Open Source Management, Open Source Audits, M&a Due Diligence, Open Source Scanning, Software Bill Of Material Management, and Sbom Management markets.

How many people work at FOSSA?

FOSSA has 51-200 employees.

Where does FOSSA hire?

FOSSA hires in πŸ‡¨πŸ‡¦ Canada, and πŸ‡ΊπŸ‡Έ United States.

Is FOSSA hiring?

FOSSA is not actively hiring at the moment. Check back later for new opportunities.

Does FOSSA hire for remote and work from home roles?

Yes, FOSSA is a remote-first company.

What is FOSSA's website?

FOSSA's website is fossa.com .

Where to find FOSSA on social media?

You can find FOSSA on X (Twitter) and LinkedIn .

Remote companies like FOSSA

Find your next opportunity with companies that specialize in Open Source Licensing, Open Source Vulnerability Management, Open Source Compliance, and Open Source Management. Explore remote-first companies like FOSSA that prioritize flexible work and home-office freedom.

All companies
Sayari Logo

Sayari

201-500 www.sayari.com

Platforms and data for global commercial relationship transparency, supporting regulatory compliance, supply chain management, and investigations.

View company profile β†’
Z2Data Logo

Z2Data

201-500 www.z2data.com

A data platform for supply chain risk management, focusing on components, suppliers, and manufacturing sites.

View company profile β†’
Drawbridge Logo

Drawbridge

51-200 drawbridgeco.com

Cybersecurity software and solutions for the alternative investment and wealth management industry.

View company profile β†’
ProcessUnity Logo

ProcessUnity

51-200 www.processunity.com

Cloud-based solutions for automating risk and compliance programs, focusing on third-party and cybersecurity risk management.

View company profile β†’
Qualifyze Logo

Qualifyze

51-200 www.qualifyze.com

AI-driven compliance and site risk management for Life Sciences companies, streamlining GxP audits and supplier qualification.

3 open positions β†’
Makersite Logo

Makersite

51-200 makersite.io

AI-powered software for product sustainability, cost, and risk optimization in manufacturing supply chains.

View company profile β†’

Project: Career Search

Rev. 2026.2

[ Remote Jobs ]
Direct Access

We source jobs directly from 21,000+ company career pages. No intermediaries.

Search Jobs Post a Job
01

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

02

Advanced Filters

Filter by category, benefits, seniority, and more.

03

Priority Job Alerts

Get timely alerts for new job openings every day.

04

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

21,000+ SOURCES UPDATED 24/7