Lead functional safety for product development in PEM electrolyzers at Quest One. Collaborate with teams and support certification processes in the field of green hydrogen technology.
About the role
- Senior Product Security Engineer promoting security-aware development of Red Hat technologies and solutions. Engaging with engineering teams to ensure product security architecture and risk mitigation.
Responsibilities
- Engage with engineering teams to promote security-aware development of Red Hat technologies/solutions
- Understand current and emerging threats in the enterprise product and service space
- Analyze complex software systems and identify potential weaknesses in their architecture
- Plan and carry out threat modeling activities, and realistic threat simulations across our offerings
- Consult with software developers and product teams on improved security architecture
- Ensure that product roadmaps and new features mitigate risk, adhere to security policies, and provide customers with minimal security risk
- Contribute to customer facing security documentation, reference, and other data as used by the common vulnerabilities and exposures (CVE) pages
- Promote Red Hat Product Security efforts within the community and the greater public.
Requirements
- Bachelor's degree in computer science/engineering or equivalent/relevant work experience
- Strong understanding of common security vulnerabilities, (e.g. OWASP Top Ten) including how to detect, demonstrate, mitigate and resolve them
- Good understanding of Linux security technologies and product security experience; for example: - POSIX Permissions, ACL, SELinux; - Seccomp, Linux namespaces and cgroups; - Linux administrations related to security: secure boot, TPMs, trusted execution environment, Linux boot chain, virtualization, containers and hypervisor security
- Experience with one or more programming languages like Go, Python, C/C++, and a willingness to learn new ones
- Familiarity with CI/CD pipeline security (e.g. Tekton, Jenkins, GitHub Actions) and artifact signing
- Knowledge and experience with modern container orchestration systems: Kubernetes, Openshift; comfortable with container technologies
- Ability to work with minimal supervision, in a fast-paced environment with a multicultural team distributed across multiple countries and time zones
- Solid communication and negotiation skills
- Excellent collaboration skills and dedication as a teammate.
Benefits
- Comprehensive medical, dental, and vision coverage
- Flexible Spending Account - healthcare and dependent care
- Health Savings Account - high deductible medical plan
- Retirement 401(k) with employer match
- Paid time off and holidays
- Paid parental leave plans for all new parents
- Leave benefits including disability, paid family medical leave, and paid military leave
- Additional benefits including employee stock purchase plan, family planning reimbursement, tuition reimbursement, transportation expense account, employee assistance program, and more!
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
(Senior) Consultant in Automotive - & Product Security at Wavestone, focusing on cyber security solutions for clients in innovative projects. Collaborative work in a vibrant team environment across multiple German cities.
Consultant specializing in Cyber & Product Security for clients in a hybrid role. Focused on implementing security strategies and conducting assessments with a collaborative approach.
Information Security Manager focusing on risk management for Xecuro GmbH. Implementing and optimizing risk management processes within a technological environment in Bonn.
Teamlead position for Security Governance & Assurance at Xecuro GmbH in Bonn. Leading team and implementing information security management systems (ISMS).
Information Security Expert working on safe digital solutions, ensuring compliance and conducting risk assessments. Join Xecuro GmbH in shaping Germany's digital future with innovative security measures.
Lead ISSO ensuring security compliance for multi - tenant cloud and hybrid environments at Agile Defense. Responsible for vulnerability analyses and risk management decision - making expertise.
Network Security Engineer focusing on Fortigate Firewalls for Vodafone's global network operations. Troubleshooting, incident management, and collaborative environments driving network security initiatives.
Security Engineer designing and deploying agentic AI systems that operate within enterprise environments for Capgemini. Collaborating on security engineering and applied AI system development.
Security Officer tasked with ensuring safety and access control at Sutter Health facilities. Providing assistance and investigating incidents, while ensuring a safe environment.