Associate Product Security Engineer
Boston
Red Hat
Red Hat is the world’s leading provider of enterprise open source solutions, including high-performing Linux, cloud, container, and Kubernetes technologies.Job Summary
Red Hat Product Security is looking for an Associate Product Security Engineer to join us in Boston. Red Hat’s Incident Response Team responds to threats in a predictable manner that reduces risk to Red Hat portfolio and customers. We do this by identifying, triaging & mitigating all potential vulnerabilities and weaknesses that impact our Products and Services offerings, and then orchestrating our response, by coordinating with the stakeholders. In this role, you will work closely with Security Architects, Product Managers and Developers, handling the vulnerability response process from initial analysis to the release of errata.
Primary Responsibilities
Respond to security vulnerabilities, weaknesses and incidents, within the Red Hat portfolio of Products and Services.
Identify, triage and formalize mitigation for the vulnerabilities and weaknesses impacting Red Hat offerings
Coordinate with key stakeholders internally and externally, as appropriate, ensuring an effective management of the vulnerabilities and the security incidents
Work with developers to improve the software development life cycle resulting in more secure Red Hat Products and Services
Contribute to customer facing security documentation, reference, and other data as used by the Common Vulnerabilities and Exposures (CVE) pages.
Research the impact of new flaws affecting Red Hat's offerings and communicate risk to stakeholders with different technical understanding, like senior leadership, engineers, architects, etc.
Manage our vulnerability response work process without SLA misses
Required Skills
Basic knowledge and understanding of Linux Operating System
Keen interest in security technologies and methodologies like authentication and authorization, encryption, and risk assessments
Solid understanding of security vulnerabilities including the confidentiality, integrity, and availability triade
Experience with and skills in triage and analysis, e.g., building a reproducer which demonstrates a software bug exists
Excellent organizational skills
Ability to work on your own in a fast-paced environment with a multicultural team distributed across multiple countries and time zones
Outstanding written and verbal communication skills in English
The following are considered are plus:
Knowledge of the Getting Things Done (GTD) productivity system
Experience with Linux; system administration experience
Experience using cloud-based technologies
Familiarity with open source software development
Pay Transparency
Red Hat determines compensation based on several factors including but not limited to job location, experience, applicable skills and training, external market value, and internal pay equity. Annual salary is one component of Red Hat’s compensation package. This position may also be eligible for bonus, commission, and/or equity. For positions with Remote-US locations, the actual salary range for the position may differ based on location but will be commensurate with job duties and relevant work experience.
About Red Hat
Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver high-performing Linux, cloud, container, and Kubernetes technologies. Spread across 40+ countries, our associates have the flexibility to choose the work environment that suits their needs from in-office to fully remote to office-flex. Red Hatters are encouraged to bring their best ideas, no matter their title or tenure. We're a leader in open source because of our open and inclusive environment. We hire creative, passionate people ready to contribute their ideas, help solve complex problems, and make an impact. Opportunities are open. Join us.
Benefits
● Comprehensive medical, dental, and vision coverage
● Flexible Spending Account - healthcare and dependent care
● Health Savings Account - high deductible medical plan
● Retirement 401(k) with employer match
● Paid time off and holidays
● Paid parental leave plans for all new parents
● Leave benefits including disability, paid family medical leave, and paid military leave
● Additional benefits including employee stock purchase plan, family planning reimbursement, tuition reimbursement, transportation expense account, employee assistance program, and more!
Note: These benefits are only applicable to full time, permanent associates at Red Hat located in the United States.
Diversity, Equity & Inclusion at Red Hat
Red Hat’s culture is built on the open source principles of transparency, collaboration, and inclusion, where the best ideas can come from anywhere and anyone. When this is realized, it empowers people from diverse backgrounds, perspectives, and experiences to come together to share ideas, challenge the status quo, and drive innovation. Our aspiration is that everyone experiences this culture with equal opportunity and access, and that all voices are not only heard but also celebrated. We hope you will join our celebration, and we welcome and encourage applicants from all the beautiful dimensions of diversity that compose our global village.
Equal Opportunity Policy (EEO)
Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.
Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.
Red Hat supports individuals with disabilities and provides reasonable accommodations to job applicants. If you need assistance completing our online job application, email application-assistance@redhat.com. General inquiries, such as those regarding the status of a job application, will not receive a reply.
Tags: Cloud Encryption Incident response Kubernetes Linux Open Source Product security Red Hat Risk assessment SDLC Vulnerabilities
Perks/benefits: 401(k) matching Career development Equity / stock options Flexible spending account Flex vacation Health care Medical leave Parental leave Salary bonus Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.