Product Security Engineer
Red Hat, Inc.
3d ago

Company Description

At Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-

performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services.

Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.

Job summary

Red Hat Product Security is looking for a Product Security Engineer to join us in Brazil. In this role, you will process tasks assigned to the Red Hat Enterprise Linux (RHEL) solutions and supported applications, fully analyze and escalate flaws.

You will perform analysis and work with fellow Red Hat engineers on various security tasks for our solutions, to ensure Red Hat continues to protect customers from meaningful security concerns.

Additionally you will perform various audit reviews for software released by Red Hat.

Primary job responsibilities

  • Provide in-depth analysis of security issues
  • Code and application auditing of various Red Hat Enterprise Linux (RHEL) components and web applications
  • Prioritize tasks to ensure that serious vulnerabilities get immediate attention
  • Communicate flaw information with our software developers, managers, quality engineers, upstream project developers, and peers on vendor security response teams
  • Document vulnerabilities, flaws, mitigations, and their fixes through the entire update release life cycle in the team's knowledge base
  • Ensure proper documentation of flaws with as much technical data as possible
  • Ensure proper reference and other data as used by Common Vulnerabilities and Exposures (CVE) pages
  • Coordinate with upstream communities and vendors for embargoed bugs, their patches, and common release dates
  • Understand current and emerging threats in the enterprise product space
  • Required skills

  • Proficiency in software development processes, with 3+ years of experience in a release engineering, quality assurance, operations, or development environment
  • Understanding of security technologies
  • Experience and skills with debugging and analysis, using tools like GDB, Valgrind, strace, and other programming-level or system-level debuggers
  • Programming experience in C or C++; proficiency in multiple languages like Python, Java, Ruby, or Go
  • Linux operating system knowledge
  • Ability to work in a fast-paced environment with diverse team dispersed across multiple countries and time zones
  • Experience working in a cross-functional, collaborative environment
  • Fluent written and verbal English communication skills
  • Familiarity with open source software
  • Organized, with analytical thinking and the ability to quickly learn new technologies
  • Bachelor's degree in computer science or equivalent, or relevant work experience
  • Experience with or in the following will be considered a plus :

  • Reverse engineering and security research
  • IDA Pro or equivalent disassembly tools
  • SecDevOps or DevSecOps and rapid deployment of web applications
  • Experience and skills with auditing and pen-testing various web applications
  • Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.

    Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.


    ApplyApplyShare Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.

    Share on your newsfeedLoading...

    Add to favorites
    Remove from favorites
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form