דרושים Senior Product Security Engineer ב-Red Hat ב-United States, Indianapolis

Job Summary

Red Hat Software Engineering is looking for a Principal Software Quality Engineer to join our Secure Supply Chain organization (Remote). In this role, you will help test and verify offerings on top of Red Hat OpenShift. Using your expertise and principles of software engineering, automation and continuous improvement, you will help create a product where availability, reliability, and security are treated through the entire application life cycle, not treated as an afterthought. As a Principal software Quality Engineer, you will write and enhance test suite to ship product and also develop tools to automate software deployments, upgrades, scaling, monitoring, alerting, and testing. In this role, you will lead the release testing efforts and guide team members in their testing and CI related tasks. Successful applicants must reside in a country where Red Hat is registered to do business.

What you will do:

• Operate within Linux/UNIX environments

• Work with Containers such as Kubernetes or OpenShift

• Analyze and communicate the quality risks based on available data

• Design, develop, and maintain test automation frameworks, scripts

• Participate in upstream projects testing

• Lead and monitor the testing tasks in the team and guide the team members.

• Continuously strive for the test process improvements

• Familiarity with Agile methodologies and processes

• Own and implement the Quality strategy in the team

• Maintain and extend the continuous integration (CI) infrastructure

• Maintain regular communication with project stakeholders including development team, product owner and management.

• Conduct research on testing tools, frameworks and its integration

What you will Bring:

We're looking for a highly experienced Software Quality Engineer with 9+ years of experience from the industry with:

• Highly experienced with any programming language like Golang/Python-Must

• Experience with ​Kubernetes or OpenShift- Must

• Linux/UNIX operating systems

• Expertise with test automation frameworks like gauge/pytest/ginkgo- at least one, pytest preferred.

• Experience with UI testing

• Experience with CI/CD

• Knowledge of the UNIX -Advantage

The following is considered a plus

• Previous code contributions to open-source projects or code samples on GitHub

• Experience in integrating AI related tools to improve the testing processes

• Certification like ISTQB (Foundational/Advanced)

What will you do

• Engage with engineering teams to promote security-aware development of Red Hat technologies/solutions.

• Understand current and emerging threats in the enterprise product and service space.

• Analyze complex software systems and identify potential weaknesses in their architecture.

• Plan and carry out threat modeling activities, and realistic threat simulations across our offerings.

• Consult with software developers and product teams on improved security architecture.

• Ensure that product roadmaps and new features mitigate risk, adhere to security policies, and provide customers with minimal security risk.

• Contribute to customer facing security documentation, reference, and other data as used by the common vulnerabilities and exposures (CVE) pages.

• Promote Red Hat Product Security efforts within the community and the greater public.

What will you bring

• Bachelor's degree in computer science/engineering or equivalent/relevant work experience.

• Strong understanding of common security vulnerabilities, (e.g. OWASP Top Ten) including how to detect, demonstrate, mitigate and resolve them.

• Good understanding of Linux security technologies and product security experience; for example:

• POSIX Permissions, ACL, SELinux;

• Seccomp, Linux namespaces and cgroups;

• Linux administrations related to security: secure boot, TPMs, trusted execution environment, Linux boot chain, virtualization, containers and hypervisor security.

• Experience with one or more programming languages like Go, Python, C/C++, and a willingness to learn new ones.

• Knowledge and experience with modern container orchestration systems: Kubernetes, Openshift; comfortable with container technologies.

• Ability to work with minimal supervision, in a fast-paced environment with a multicultural team distributed across multiple countries and time zones.

• Solid communication and negotiation skills. Excellent collaboration skills and dedication as a teammate.

The following will be considered a plus:

• Familiarity with open source software and open source as a business model.

• Linux-specific and/or security-related certifications (e.g. RHCSA, RHCE, RHCA, CISSP, CISM, CSSLP, CISA, etc.)

• Work experience and/or certifications with cloud providers and cloud-related technologies (AWS, Azure, GCP, Tekton, Jenkins, etc.)

About the job:

The Red Hat Information Technology (IT) team is looking for a Senior Software Quality Engineer. The ideal candidate will be responsible for ensuring the quality and reliability of Salesforce implementations, customizations, and integrations. You will work closely with developers, business systems analysts, and stakeholders to understand requirements, design test strategies, and automate test cases to improve product quality and speed of delivery.

What will you do?

• Collaborate with cross-functional teams (developers, business systems analysts, and product owners) to develop a test strategy that ensures comprehensive test coverage of Salesforce solutions.

• Perform functional, regression, integration, and system testing on Salesforce implementations, including workflows, custom objects, and integrations with other systems.

• Design and implement automated test frameworks for Salesforce testing using tools like Selenium, Polarion, or similar.

• Provide feedback to the development team to improve coding and design practices from a quality standpoint.

• Create detailed test plans, test cases, and test scripts for both manual and automated testing. Ensure proper documentation of defects and resolutions.

• Conduct performance and load testing for Salesforce solutions to ensure scalability and performance.

• Mentor junior QA team members, drive best practices for QA in the Salesforce environment, and foster a culture of quality within the team.

• Test integrations between Salesforce and other systems (e.g., ERP, marketing platforms) to ensure seamless data flow and process alignment.

• Log and track defects using tools like JIRA, ensuring that they are resolved in a timely manner.

What will you bring?

• 5+ years of experience working with Salesforce platform, with knowledge of Sales Cloud and Experience Cloud preferred.

• Strong understanding of QA methodologies, best practices, and tools. Experience with automated testing frameworks like Selenium, Polarian, or equivalent.

• Experience in automating Salesforce test cases using tools such as Selenium WebDriver, TestNG, JUnit, or equivalent. Experience with CI/CD tools like Jenkins is preferred.

• Expertise in functional testing, regression testing, system testing, and UAT. Familiarity with performance testing and load testing tools.

• Experience testing APIs and integrations (REST, SOAP) between Salesforce and other third-party systems.

• Strong analytical and problem-solving skills with the ability to troubleshoot complex issues in Salesforce implementations.

• Ability to mentor junior team members and drive best practices.

• Familiarity with Agile development and Scrum methodologies.

• Excellent communication and collaboration skills to work effectively with cross-functional teams.

• Proficiency in tools like JIRA, Confluence, Git, Bitbucket.

• Strong verbal and written communication skills.

• Ability to work both independently and in a team-oriented, collaborative environment.

• Proactive attitude and willingness to learn new technologies.

About the Job:

The IT Public Cloud team is seeking ato design, deploy, and manage cloud infrastructure that supports scalable, secure, and highly available applications. In this role, you will work within a small team of system and cloud engineers to understand the interdependencies between public and private cloud platforms, define platform requirements, and implement enterprise-grade cloud solutions.

What will you do?

• Deploy, manage, and optimize cloud environments (AWS, IBM Cloud, Azure, and GCP) to ensure reliability, scalability, and cost efficiency.

• Develop and maintain infrastructure automation using tools like Ansible Automation Platform and Terraform.

• Implement and maintain intelligent infrastructure and application monitoring designed to enable application engineering teams

• Implement cloud security best practices, IAM policies, network security, and ensure compliance with industry standards.

• Set up observability tools (e.g. Splunk, Splunk IM, etc) to monitor cloud services, troubleshoot performance issues, and enhance system efficiency.

• Work closely with development, security, and operations teams to provide cloud solutions that align with business and workload needs.

• Investigate and resolve cloud infrastructure issues, ensuring high availability and minimal downtime.Help and develop peers’ capabilities through knowledge sharing, mentoring, and collaboration

• Participate in a regular on-call schedule, supporting the operation needs of our tenants

• Practice sustainable incident response and blameless postmortems

• Work within a small agile team to develop and improve SRE methodologies, support your peers, plan and self-improve

What will you bring?

• 3-5 years of experience in cloud management, DevOps, or system administration managing cloud-based production platforms or internally hosted services and platforms.

• 3+ years of experience in using cloud providers and technologies (AWS, IBM Cloud, GCP, Azure, etc.)

• Strong experience with Terraform, CloudFormation, similar tools, and configuration management tools like Ansible, Puppet, or Chef.

• Proficiency in Python, Bash, or PowerShell for automation, plus experience with object-oriented programming languages.

• Experience with enterprise monitoring tools (CloudWatch, Datadog, Prometheus, Splunk) and troubleshooting system issues to ensure high availability and performance.

• Basic knowledge of enterprise security requirements.

• Solid understanding of cloud networking (VPCs, subnets, firewalls) and security best practices (IAM, encryption, SIEM).

• Experience working with CI/CD pipelines using GitHub Actions, Jenkins, GitLab CI/CD, or similar tools.

• Experience with Git and repository management, with strong problem-solving skills and the ability to work effectively in cross-functional teams.

• Strong troubleshooting skills and the ability to work effectively with development and operations teams.

• Independent problem-solving and self-direction

• Works well alone and as part of a global team

• Experience working with Agile development methodologies

Preferred Qualifications:

• Certifications such as AWS Certified Solutions Architect, Azure Administrator, or Google Cloud Associate Engineer.

• Experience with hybrid cloud or multi-cloud environments.

• Familiarity with serverless computing (AWS Lambda, Azure Functions, GCP Cloud Functions).

• Experience working in Agile or DevOps-focused teams.

What you will do?

• Execute full software development life cycle within an agile environment

• Design, implement, and maintain scalable, reliable, and highly available infrastructure systems to support business applications and services.

• Automate repetitive tasks and processes using scripting and configuration management tools (e.g., Python, Bash, Terraform, Ansible).

• Manage cloud-based infrastructure (OpenShift) and optimize resources for reliability, performance, and security.

• Monitor system performance, troubleshoot issues, and ensure uptime and reliability through proactive alerting, metrics, and incident response.

• Collaborate with developers to improve application resilience, deploy code efficiently, and integrate CI/CD pipelines.

• Conduct root cause analysis (RCA) for incidents, document findings, and implement preventive measures to minimize downtime.

• Continuously improve system architecture, deployment processes, and tooling to enhance operational efficiency and scalability.

• Ensure security best practices are applied across infrastructure, including access controls, network configurations, and compliance requirements.

• Effectively communicate to stakeholders and project team members to ensure proper visibility into development efforts

• Ability to respond to the customer’s tickets and inquiries

What you will bring?

• 5+ years of experience with Linux Systems Administration (RHEL, CentOS, etc)

• 5+ years of experience delivering enterprise software applications

• 3+ years of experience with Bash scripting

• 2+ years of experience with Git (experience with GitLab a plus)

• Some programming experience in Python

• Experience with containers and container orchestration tools (Docker, Podman, Kubernetes, OpenShift, etc)

• Good knowledge of CI/CD pipelines and tooling (GitLab CI, GitHub Actions, etc)

• Experience with configuration management tools (Ansible, Terraform, etc)

• Excellent written and verbal communication skills in English

• Passion for developing open source software

• Positive attitude and willingness to share ideas openly

What will you do?

• Work with the sales, operations, legal, finance, and product teams and elicit requirements using interviews, document analysis, requirements workshops, surveys, business process descriptions, cases, scenarios, data analysis, and task and workflow analysis

• Critically evaluate information gathered from multiple sources, reconcile conflicts, decompose high-level information into details, abstract up from low-level information to a general understanding, and distinguish user requests and wants from the underlying, true business needs

• Be responsible for the configuration or development of system changes in Salesforce

• Understand the data model related to Salesforce Sales Cloud and Experience Cloud

• Ensure solutions are portable so they can be promoted to additional environments, including production, by an automated deployment pipeline

• Meet team standards for solution design, code, configuration, testing, and quality

• Participate in peer reviews to provide and receive constructive feedback

• Work as part of a scrum team as well as on your own with minimal supervision

• Work with other technical teams to build integrated solutions

• Support and troubleshoot integration issues

What will you bring?

• 5+ years of Salesforce consulting or Salesforce implementation experience

• 2+ years of experience with Salesforce Lightning and Apex

• Experience building Lighting Components (Aura or LWC)

• Experience building and customizing Digital Experience sites for external users (Salesforce Experience Cloud)

• Working knowledge of at least one of the following Source Code Management (SCM) technologies or similar: GitHub, Bitbucket, git

• Knowledge of the Salesforce security model (data sharing and visibility, object and field security, etc) as it pertains to both internal and external users

• Bachelor’s degree

• Knowledge of how to develop and deploy solutions

• Comfortable building and demonstrating prototypes in Salesforce

• Ability to understand and troubleshoot implemented code

• Ability to understand an implemented architecture and deliver on technical specifications

• Ability to accurately scope, plan, and estimate the level of effort for tasks, with an appropriate balance of risk and effort

• Good understanding of object-oriented technologies to develop software applications

• Ability to work on your own and manage multiple-task assignments

• Outstanding written and verbal communication skills, including presentation skills

• Excellent problem-solving and troubleshooting skills with the ability to exercise mature judgment

The following are considered a plus:

• Experience with Salesforce CPQ, Loyalty Management, Rebates Management

• Experience with the deployment of Salesforce metadata using the Salesforce Command Line Interface (CLI)

• Experience using Salesforce Scratch Orgs for Salesforce development

• Experience with DevOps automation using one of the following or equivalent: GitHub Actions, Azure DevOps, Jenkins

• Experience with at least one commercial Salesforce DevOps tool: Copado, Flosum, Gearset, AutoRABIT, or equivalent

• Knowledge of document generation functionality and eSignature

• Advanced degree in the area of specialization

What will you do

• Engage with engineering teams to promote security-aware development of Red Hat technologies/solutions.

• Understand current and emerging threats in the enterprise product and service space.

• Analyze complex software systems and identify potential weaknesses in their architecture.

• Plan and carry out threat modeling activities, and realistic threat simulations across our offerings.

• Consult with software developers and product teams on improved security architecture.

• Ensure that product roadmaps and new features mitigate risk, adhere to security policies, and provide customers with minimal security risk.

• Contribute to customer facing security documentation, reference, and other data as used by the common vulnerabilities and exposures (CVE) pages.

• Promote Red Hat Product Security efforts within the community and the greater public.

What will you bring

• Bachelor's degree in computer science/engineering or equivalent/relevant work experience.

• Strong understanding of common security vulnerabilities, (e.g. OWASP Top Ten) including how to detect, demonstrate, mitigate and resolve them.

• Good understanding of Linux security technologies and product security experience; for example:

• POSIX Permissions, ACL, SELinux;

• Seccomp, Linux namespaces and cgroups;

• Linux administrations related to security: secure boot, TPMs, trusted execution environment, Linux boot chain, virtualization, containers and hypervisor security.

• Experience with one or more programming languages like Go, Python, C/C++, and a willingness to learn new ones.

• Knowledge and experience with modern container orchestration systems: Kubernetes, Openshift; comfortable with container technologies.

• Ability to work with minimal supervision, in a fast-paced environment with a multicultural team distributed across multiple countries and time zones.

• Solid communication and negotiation skills. Excellent collaboration skills and dedication as a teammate.

The following will be considered a plus:

• Familiarity with open source software and open source as a business model.

• Linux-specific and/or security-related certifications (e.g. RHCSA, RHCE, RHCA, CISSP, CISM, CSSLP, CISA, etc.)

• Work experience and/or certifications with cloud providers and cloud-related technologies (AWS, Azure, GCP, Tekton, Jenkins, etc.)