Weranga Kaluarachchi
Dallas,TX
Summary
Accomplished Principal Open Source Engineer at CARIAD, adept at driving compliance initiatives and developing robust toolchains. Expert in forensic analysis and IP compliance, successfully integrated scanning tools into CI/CD pipelines, enhancing legal adherence. Proven ability to educate teams and foster a culture of compliance across diverse stakeholders.
Overview
16
16
years of professional experience
Work History
Principal Open Source Engineer
CARIAD Inc, Volkswagen Group
, USA
07.2022 - 06.2025
- Key technical person for OSS compliance process at CARIAD and deliver compliant software to 10+ OEMs (VW, Audi, Porsche, Bentley, Lamborghini, etc) of Volkswagen group
- Work with Development, System Engineering, Software Security, and Legal teams to set up continuous compliance process (to manage Intellectual Property Scanning, Risk Ratings and OSS Investigation) company-wide to provide Scalable and highly available services to developers within SDLC
- Build up a state-of-the-art compliance toolchain using ORT, BlackDuck, ScanCode, SW360, Artifactory
- Educate developers about Open Source and create relevant OSS trainings and materials
Lead Open Source Engineer
CARIAD SE - Volkswagen Group
, Germany
09.2020 - 06.2022
- The key technical person who is responsible for overall Open Source compliance at CARIAD SE
- Work with Development, System Engineering, Software Security, and Legal teams to set up continuous compliance process (to manage Intellectual Property Scanning, Risk Ratings and OSS Investigation) company-wide to provide Scalable and highly available services to developers within SDLC
- Educate developers about Open Source and create relevant training programs and materials
Open Source Officer
Autonomous Intelligent Driving (AID) GmbH
, Germany
04.2020 - 07.2020
- The key person who responsible for overall Open Source compliance at AID
- Process owner for multiple processes around Intellectual scanning, inbound Open Source reviews, outbound Open Source contribution, and other relevant open-source processes
Lead Compliance Engineer
SAP
, Canada
05.2012 - 03.2020
- Developed and implemented forensic-grade IP compliance protocols for Docker container distributions within SAP.
- Conducted deep-dive analysis on container contents, identifying embedded open-source components and ensuring license adherence to prevent legal exposure.
- Led the legal compliance initiative for Cloud Foundry (CF) and OpenStack in SAP. Managed a team with 10+ members to create a tool to fulfill the compliance requirements for CloudFoundry and OpenStack by scanning large (>50GB) deliverables while achieving the accuracy over 80% where the industry benchmark was 70
- Integrated IP scanning into CI/CD pipelines using tools like ORT and ScanCode, ensuring continuous compliance enforcement at build-time
- Contributed to SAP’s broader IP governance programs across PaaS and IaaS offerings (e.g., SAP Cloud Platform), embedding forensic processes into platform release workflows.
Implementation Consultant (ACDA Certified)
ACL Services
, Canada
09.2010 - 04.2012
- Managed 8+ fortune 500 clients including the world’s largest credit card provider and a top 100 pharmaceutical company by automating 100+ audit controls, mitigate risks and increase quality and consistency to avoid multimillion-dollar penalties enforced by external audits
- Resolved 100+ audit and control issues, including technical issues related to ERP systems (SAP, PeopleSoft, and Oracle Financials), database architectures and security
- Provided personalized ACL solution training to 100+ customers and end-users, conducted knowledge transfers and training sessions for other team members
Software Developer (Co-op)
Research in Motion
Ottawa, Canada
09.2009 - 12.2009
- Designed a framework to support test automation for 50+ unique BlackBerry devices simultaneously
- Administered tool for generating Build Summary Reports for the BlackBerry devices for 1000+ users, added 10+ automated controls to improve the quality of service
- Developed a web application to generate internal release notes, code lines and bundles for 500+ different devices consumed by stakeholders such as developers, gatekeepers and managers
Education
Matser of Software Systems -
University of British Columbia
Canada05-2010
B.Sc. (Hons) - Computer Science
University of Peradeniya
Sri Lanka01.2006
Skills
- Open Source License Compliance: Expert in reviewing and analyzing open-source licenses to ensure compliance with organizational policies and legal requirements
- Forensic analysis: skilled in conducting detailed forensic analysis to identify open source origination, license, and other important metadata
- Compliance toolchains: proficient in utilizing tools such as BlackDuck, ORT, Whitesource, Flexera, Scancode, and SW360 for IP scanning and risk assessment
- Legal and Regulatory Knowledge: In-depth understanding of intellectual property laws and open-source licensing regulations
- Technical Proficiency: Hands-on experience with CI/CD integration (GitHub Actions, Jenkins, etc), version control systems, and code scanning tools
Volunteer Experience
Acted as a mentor for the Technovation program supported by 100+ countries, assisted the youth building business, technical and social skills to help them in succeeding as entrepreneurs, Acted as the volunteer ambassador for the Ocean Legacy foundation in SAP and coordinated 100+ volunteer hours for marine debris sorting campaign
Timeline
Principal Open Source Engineer
CARIAD Inc, Volkswagen Group
07.2022 - 06.2025
Lead Open Source Engineer
CARIAD SE - Volkswagen Group
09.2020 - 06.2022
Open Source Officer
Autonomous Intelligent Driving (AID) GmbH
04.2020 - 07.2020
Lead Compliance Engineer
SAP
05.2012 - 03.2020
Implementation Consultant (ACDA Certified)
ACL Services
09.2010 - 04.2012
Software Developer (Co-op)
Research in Motion
09.2009 - 12.2009
Matser of Software Systems -
University of British Columbia
B.Sc. (Hons) - Computer Science
University of Peradeniya
Similar Profiles
RITHESHWAR MANJUNATHRITHESHWAR MANJUNATH
Software Engineer at CARIAD INDIA (A VOLKSWAGEN GROUP COMPNAY)Software Engineer at CARIAD INDIA (A VOLKSWAGEN GROUP COMPNAY)
Debjit MajumderDebjit Majumder
Intern - Data Scientist,ML at CARIAD, Volkswagen GroupIntern - Data Scientist,ML at CARIAD, Volkswagen Group
Subhasis DasSubhasis Das
Lead Product Manager at Hexad Gmbh( Digital Partner of Volkswagen CARIAD(Lead Product Manager at Hexad Gmbh( Digital Partner of Volkswagen CARIAD(
Reshma ShaikReshma Shaik
Software Developer 3 at Oracle CorporationSoftware Developer 3 at Oracle Corporation
Chrisshay LewisChrisshay Lewis
Non-Certified X Ray Tech at Southwest Scoliosis InstituteNon-Certified X Ray Tech at Southwest Scoliosis Institute