As a R&D engineer in the Common Software Foundation team, you will contribute to delivering secure open-source components across various PaaS environments, including NCS, AWS, Azure, and GCP. In this role, you will enhance security by analyzing and prioritizing vulnerabilities in Rocky and Redhat OS, conducting scans, and implementing appropriate remediation. 
You will also work on developing and testing Rocky OS, leveraging expertise in microservices, containers, and CI/CD DevOps practices. Your proficiency in secure protocols, encryption methodologies, and vulnerability assessment tools will help strengthen system security. Additionally, you will contribute to SBOM generation, security design, and threat analysis, ensuring compliance with industry standards.

You Have: 

Engineering Graduate or equivalent degree with 3-8 years of experience in Development and Testing, with expertise in Rocky and Redhat OS, and Python programming.Hands-on experience with Microservices, Containers (Docker, Kubernetes, Helm), and CI/CD DevOps practices.Proficient in secure protocols (TLS, SSH), encryption methodologies, and security hardening practices.Skilled in vulnerability scanning, penetration tests, and using tools like Anchore, Tenable, and Nmap.

It would be nice if you also had:

Knowledgeable in SBOM generation, Design for Security & Privacy, and Threat & Risk analysis.Understanding of Zero Trust architecture, compliance frameworks (NIST, CIS, ISO 27001), and experience with AI-driven security analytics tools.Familiarity with tools like Terraform, Ansible, and cloud-native security practices across AWS, Azure, and GCP.Deploy and manage open-source components across various PaaS environments (NCS, AWS, Azure, GCP) while ensuring compliance with security and performance standards.Analyze, prioritize, and remediate Common Vulnerabilities and Exposures (CVEs) in Rocky and Redhat OS, collaborating with development teams for effective resolution.Conduct security scans (e.g., Burp, Anchore, Malware, Codenomicon), analyze reports, and assess severity based on open-source software usage.Develop and test Rocky OS as per CSF specifications, leveraging expertise in Linux-based OS, Python programming, and automation.Work with microservices, containers (Docker, Kubernetes, Helm), and CI/CD pipelines to enhance software delivery and deployment efficiency.Implement secure communication protocols (TLS, SSH), encryption methodologies, and security hardening practices to safeguard applications.Perform penetration testing, vulnerability assessments using tools like Anchore, Tenable, and Nmap, and contribute to security risk analysis and mitigation strategies.Contribute to Software Bill of Materials (SBOM) generation, threat modeling, and secure design principles to ensure compliance with industry security standards.