At Red Hat, we connect an innovative community to deliver an open-source stack of trusted, high-performing solutions. This role supports the Product Security Resilient Development (PSRD) team and the newly established Threat Intelligence function for Product Security. You will play a key role in transitioning Red Hat to a proactive threat intelligence model for software and the supply chain. As a Level 2 engineer, you are expected to handle complex tasks with minimal guidance and participate in broader team initiatives.
What you will do
- Security Architecture & Assessment: Analyze complex software systems and question security assumptions to identify potential weaknesses.
- Threat Hunting & Analysis: Plan and carry out threat hunting, research, and analysis to provide actionable tactical recommendations to Subject Matter Experts (SMEs) to help address product and software supply chain security risks.
- SDLC Integration: Ensure product roadmaps and new features mitigate risk and adhere to the Red Hat Secure Development Lifecycle (RH-SDLC).
- Automation & Process Improvement: Identify tasks within the threat intelligence workflow for automation and review processes for interfacing with internal stakeholders and partners.
What you will bring
- Strong understanding of common security threats and risks (e.g., OWASP Top Ten) and comprehensive knowledge of software security across multiple languages, computer architectures, and operating systems.
- Knowledge of Linux security technologies (e.g., SELinux, Seccomp, namespaces) and experience with modern container orchestration systems like Kubernetes or OpenShift.
- Demonstrated ability to apply "Getting Things Done" (GTD) principles to organize tasks and consistently meet SLA objectives.
- Work effectively in a fast-paced, multicultural, and distributed environment, transparently sharing ideas and providing feedback on workflows to senior team members.
- Utilize solid communication and negotiation skills to represent customer security needs to Engineering teams.
Preferred Skills (A Plus)
- Linux-specific or security-related certifications (e.g., RHCSA, CISSP, CSSLP).
- Experience with cloud providers (AWS, Azure, GCP) and CI/CD technologies like Tekton or Jenkins.
- Familiarity with open-source software as a business model.
- Experience with one or more programming languages such as Go, Python, or C/C++.
About Red Hat
Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver high-performing Linux, cloud, container, and Kubernetes technologies. Spread across 40+ countries, our associates work flexibly across work environments, from in-office, to office-flex, to fully remote, depending on the requirements of their role. Red Hatters are encouraged to bring their best ideas, no matter their title or tenure. We're a leader in open source because of our open and inclusive environment. We hire creative, passionate people ready to contribute their ideas, help solve complex problems, and make an impact.
Inclusion at Red Hat
Red Hat’s culture is built on the open source principles of transparency, collaboration, and inclusion, where the best ideas can come from anywhere and anyone. When this is realized, it empowers people from different backgrounds, perspectives, and experiences to come together to share ideas, challenge the status quo, and drive innovation. Our aspiration is that everyone experiences this culture with equal opportunity and access, and that all voices are not only heard but also celebrated. We hope you will join our celebration, and we welcome and encourage applicants from all the beautiful dimensions that compose our global village.
Equal Opportunity Policy (EEO)
Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.
Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.
Red Hat supports individuals with disabilities and provides reasonable accommodations to job applicants. If you need assistance completing our online job application, email application-assistance@redhat.com. General inquiries, such as those regarding the status of a job application, will not receive a reply.