Code Intelligence & Static Analysis Engineer
SynergeticCode Intelligence & Static Analysis Engineer
Inside IR35
3 months with likely extension
Hybrid (2-3 days per week in London)
You've built things with ASTs that most engineers don't know exist. You understand what code does, not just what it says it does. If silent non-compliance detection sounds like an interesting problem, read on.
This role sits at the core of a specialised code screening platform being built for a regulated environment. You'll design and build the analysis pipeline that determines whether submitted code does what its documentation claims and catches it when it doesn't.
This isn't standard application development. You'll work with multi-language AST parsers, call graph builders, code embedding models, and SBOM generators, and you'll need to think adversarially about obfuscation. Your output feeds directly into compliance decisions.
What we're looking for
- Strong experience in SAST/DAST, application security, or code intelligence tooling
- Strong Tree-sitter or equivalent AST parsing experience across multiple languages
- Hands-on with code embedding models (CodeSage, StarCoder, or similar)
- Software composition analysis and SBOM generation experience
- Sandboxed execution environment design
- Familiarity with supply chain security and provenance tracking
If you are available and interested in this new role please send a current CV for review