About the position
Red Hat Product Security is looking for a Product Security Engineer to join our global Resilient Development team specializing in the emerging field of AI Security. Red Hat's Resilient Development Team focuses on Secure Development and improving proactively the security posture of our Products and Services portfolio and their build pipelines. You will perform security architecture reviews and security assessments of emerging AI products and technologies throughout their development life cycle, in collaboration with Engineering and other Product Security teams. This process includes analyzing and documenting architecture from a security point of view, questioning security assumptions, finding potential problems, proposing improvements, performing code reviews, defining testing expectations, and promoting secure development best practices from our offerings through to their related open source communities. As a Product Security Engineer, you will represent the security needs of our customers to our Engineering teams, advocating and planning for a solid foundation of security architecture across the open source ecosystem.
Responsibilities
- Engage with engineering teams to promote security-aware development of Red Hat technologies/solutions, with a focus on our AI Platform.
- Understand current and emerging threats in the enterprise and how they apply to AI platforms.
- Analyze complex software systems and identify potential weaknesses in their architecture.
- Plan and carry out threat modeling activities, and realistic threat simulations across our offerings.
- Consult with software developers and product teams on improved security architecture.
- Ensure that product roadmaps and new features mitigate risk, adhere to security policies, and provide customers with minimal security risk.
- Contribute to customer facing security documentation, reference, and other data as used by the common vulnerabilities and exposures (CVE) pages.
- Promote Red Hat Product Security efforts within the community and the greater public.
Requirements
- Bachelor's degree in computer science/engineering or equivalent/relevant work experience.
- Strong understanding of common security vulnerabilities, (e.g. OWASP Top Ten) including how to detect, demonstrate, mitigate and resolve them.
- A good understanding of LLM's, AI architecture patterns, and related technologies such as MCP.
- Good understanding of Linux security technologies and product security experience; for example: POSIX Permissions, ACL, SELinux; Seccomp, Linux namespaces and cgroups.
- Linux administrations related to security: secure boot, TPMs, trusted execution environment, Linux boot chain, virtualization, containers and hypervisor security.
- Experience with C and Python programming languages, and a willingness to learn new ones.
- Knowledge and experience with modern container orchestration systems: Kubernetes, Openshift; comfortable with container technologies.
- Ability to work with minimal supervision, in a fast-paced environment with a multicultural team distributed across multiple countries and time zones.
- Solid communication and negotiation skills. Excellent collaboration skills and dedication as a teammate.
Benefits
- Comprehensive medical, dental, and vision coverage
- Flexible Spending Account - healthcare and dependent care
- Health Savings Account - high deductible medical plan
- Retirement 401(k) with employer match
- Paid time off and holidays
- Paid parental leave plans for all new parents
- Leave benefits including disability, paid family medical leave, and paid military leave
- Additional benefits including employee stock purchase plan, family planning reimbursement, tuition reimbursement, transportation expense account, employee assistance program, and more!
