• Software Engineer - Red Hat OpenStack Product Security

    Location US-Remote
    Posting date 2 months ago(4/16/2018 6:42 AM)
    Job ID
    Software Engineering
  • Company description

    At Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services. Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.

    Job summary

    Help with security-related tasks, including reactive security response, active hardening, and security auditing projects on the Red Hat OpenStack Platform solutions, projects, and tooling. Red Hat's Product Security team is looking for an experienced Software Engineer to join us. In this role, you will work closely with product managers and developers, conducting meaningful security audits and handle the vulnerability response process from initial analysis to the release of errata. Candidates in the Americas or Europe are preferred, but well-qualified home-based candidates will be considered. The work location is flexible, but successful applicants must reside in a country where Red Hat is registered to do business. Successful applicants must reside in a state where Red Hat is registered to do business.

    Primary job responsibilities

    • Understand current and emerging threats in the enterprise product space with a focus on cloud and Infrastructure-as-a-Service (IaaS) solutions
    • Work with developers to provide guidance and help to understand and make use of security technologies, methodologies, and concepts
    • Communicate flaw information with software developers, managers, quality engineers, upstream project developers, and peers in the Red Hat Product Security team and the security teams of other projects and companies
    • Conduct well-documented security audits and threat analysis on Red Hat’s solutions with a primary focus on Red Hat OpenStack Platform
    • Identify, assist with, and develop tools used for code audits
    • Work with product management to empower developers to conduct audits of solutions

    Required skills

    • Bachelor's degree or equivalent in a technology-related discipline; computer science or engineering are a plus
    • Proficiency in software development processes; 5+ years of experience in a release engineering, quality assurance (QA), operations, or development environment
    • Proficiency in multiple programming languages and the ability to learn new ones; knowledge of Python, Java, Ruby, Go, and JavaScript
    • Experience with Linux; system administration experience is a plus
    • Understanding of security technologies
    • Experience and skills with debugging and analysis, especially using tools like GDB, Valgrind, strace, and other programming or system-level debuggers
    • Excellent organizational skills; knowledge of the Getting Things Done (GTD) productivity system is a plus
    • Familiarity with Red Hat's enterprise solutions portfolio and related industry offerings
    • Ability to work in a fast-paced environment with multicultural team distributed across multiple countries and time zones
    • Experience working in a cross-functional, collaborative environment and an ability to bring groups of people together to collaborate
    • Outstanding written and verbal communication skills in English
    • Familiarity with open source software development and business models is a big plus

    The following are considered are plus:


    • Windows, Mac OS X, iOS, and Android operating system knowledge
    • Prior experience in reverse engineering (RE) and security research
    • Practical experience with cloud-based technologies

    Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, uniformed services, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.

    Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.


    Interested in this job?

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed