Senior .NET Security Research Engineer - AppSec

  • Micro Focus
  • 511 US Highway 70 W, Unit D, Hildebran, NC 28637, USA
  • Nov 09, 2020
[Information Technology]

Job Description

Senior .NET Security Research Engineer - AppSecJob Description: Location is open to home office based in any geo. At Micro Focus, everything we do is based on a simple idea: The fastest way to get results is to build on what you have. Our software solutions enable organizations to do just that. Secure and scalable, with analytics built in, they bridge the gap between existing and emerging ITfast-tracking digital transformations across DevOps, Hybrid IT, Security, and Predictive Analytics. In the race to innovate, Micro Focus customers have the clear advantage. Our portfolio spans the following areas: DevOps | IT Operations| Cloud | Security | Info Governance | Big Data, Machine Learning, & Analytics Micro Focus Fortify is seeking an experienced, energetic, self-driven enterprise .NET Software Security Researcher who understands that security is more than firewalls and encryption. Software security is becoming a bigger concern as more and more organizations are experiencing embarrassing public incidents with large losses of data. Were looking for people to: Expand the security content and capabilities of Micro Focus Fortify ProductsImprove Fortifys ability to communicate with and educate customers about security issuesPublish and present Fortifys research and other relevant security topicsFollow trends in software security and assess their significanceInvestigate and implement techniques for exploiting security vulnerabilitiesDiscover new methods for automatic identification of vulnerabilitiesExtract the essence of known vulnerabilities to shape products of the futureIdentify new vulnerabilities in open source projects and customer code The Software Security Research (SSR) team specializes in approaching security from the perspective of how we build and use software. SSR is responsible for conducting security research which leads to enhanced security products as well as contributions to the Micro Focus Security Research Blog, whitepapers, conference presentations, and annual Cyber Risk Report. SSR in the past has identified new types of software vulnerabilities, defined the taxonomy used by all Fortify products and highlighted broad security problems in development practices. The team regularly speaks about these topics at major industry conferences, such as RSA, BlackHat, DefCon, and OWASP APPSEC. In addition, the SSR team is responsible for quarterly releases of security content for Enterprise Security Fortify products (Static Code Analyzer, WebInspect, Fortify on Demand, Application Defender, and Software Security Center Server).These updates expand the types of issues detected and platforms and libraries supported. Content updates are driven by customer needs and the SSR teams broader research agenda, allowing the Fortify products to keep up with a rapidly evolving development and security landscape. Knowledge and Skills: Bachelors/Masters/PhD in Computer Science/Engineering3+ years' systems/software experience with strong focus in enterprise securityProficient in .NET related programming and scripting languages (e.g. C#/ASP.NET, JavaScript, PowerShell)In depth knowledge of the .NET CLR and development toolsStrong technical communication skillsInterest in software security and secure developmentExposure to common security software flawsExtensive experience with multiple software systems design tools and languagesExcellent analytical and problem solving skillsExperience in overall architecture of software systems for products and solutionsDesigning and integrating software systems running on multiple platform types into overall architectureEvaluating forms and processes for software systems testing and methodology, including writing and execution of test plans, debugging, and testing scripts and toolsExcellent written and verbal communication skills; mastery in English and local language. Ability to effectively communicate product architectures, design proposals and negotiate options at senior management levels. Preferred Skills: Proficient in multiple programming and scripting languages (e.g. , Java, GoLang, C/C++, Objective-C, Scala, SWIFT, Python, JavaScript)Source code auditing experience (especially Fortify SCA)Experience working in a large enterprise software development environment #LI-DK1 #DICE-DK Job:EngineeringMicro Focus is proud to be an Equal Opportunity Employer. Prospective employees will receive consideration without discrimination because of race, colour, religion, creed, gender, national origin, age, disability, marital or veteran status, sexual orientation, genetic information, citizenship or any other legally protected status
Associated topics: artificial intelligence, circuit, electronic, linux, malware, matlab, photonics, programmer, robotics, schematic