We are looking for a Principal Vulnerability Engineer who will be part of the security vulnerability team for the Java platform. This team conducts both the red team (offensive) and blue team (defensive) duties.
Responsibilities:
1. Proactive research on new vulnerability signatures for the Java platform.
2. Create and maintain security tooling for the Java platform.
3. Conduct security assessments for new features that will be integrated into the JDK.
4. Assist development teams with security code review.
Qualifications:
Qualified candidates must have at least 10+ years of hands-on experience in platform security, with a deep knowledge of the Java security model. Minimum 10+ years of hands-on experience with security protocols and best practices are required. The ideal candidate is expected to work independently on assigned tasks.
Proven past experience in successful security incident resolution and proactive research utilizing industry standard tools is a must-have. Past research and CVEs on Java security issues are a plus. Must have proficiency in Java, expert level C/C++ skills, and systems level programming. Great personal leadership, self-starter qualities, ability to work with remote teams, and strong communication skills are required.
#J-18808-Ljbffr