Senior Software Engineer (C / C++ / RUST)
Black Duck
Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. Black Duck, a recognized pioneer in application security, provides SAST, SCA, and DAST solutions that enable teams to quickly find and fix vulnerabilities and defects in proprietary code, open source components, and application behavior. With a combination of industry-leading tools, services, and expertise, only Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle.
Software Engineering, Sr Engineer
At Black Duck Software, we pride ourselves on building products and delivering services that help our customers keep their applications safe and secure. Our people do this so well, we have been named the AppSec leader for seven years in a row by Gartner.
Product and team information:
We are a team of highly technical software engineers in a fast-paced dynamic environment building an industry leading Static Analysis tool. We are growing the team in the Bangalore office, and this is a unique opportunity for someone to be part of this growth. If you have experience/interest in application security, programming languages, compilers, static analysis and proven ability to learn and grow we’d love to talk to you.
Based on your interest, abilities/skills and fit to the right job, you will be part of one of the following profiles …
- Create and maintain compiler front-ends compatible with open-source or commercially available compilers for a wide spectrum of programming languages. These front-ends integrate with our state-of-the-art static analysis engine.
- Implementing, testing, and evaluating customized security checks (or rules). These checkers will run using our static analysis tool’s engine and they specify the types of the defects or problematic patterns that you want to find in the source code and would like our static analysis tool to report. Thus, adding more checks will provide users with better security results when scanning their code. You will create checks for variety of languages supported. Some of these checks are done for variety of languages like C/C++ in compliance with Industry standards like MISRA, AUTOSAR etc.
The perfect candidate will have a strong passion for improving software quality and security, enthusiasm about programming languages and compilers, but foremost, highly motivated and has a strong desire to learn.
Qualifications and Experience:
- Bachelor's or master’s in computer engineering or related fields (CSE, ISE)
- 3+ yrs of experience in static analysis, Compilers, and/or related technologies
- Programming experience in C/C++, RUST
- Experience with development on Linux/Unix or Windows
Primary Responsibilities:
As part of the team, you will be involved in one or more of the following activities based on the team that you fit in …
- Contribute to developing, testing, maintaining, and integrating various compiler front ends
- Design and write well-designed/well-tested static analysis algorithms/checkers
- Read and understand programming language standards
- Create test cases for validating different execution scenarios.
- Perform evaluations of check results using Jenkins automation
- Contribute to the collection of benchmarks used for checker evaluation.
Skills Required / Preferred Experience :
- Demonstrated history of good analytical, debugging, and problem-solving skills.
- Stellar object-oriented programming and design and coding skills.
- Interest or experience in analyzing programming languages, building compilers, parsers, or other language analyzers.
- Interest or experience in dataflow and program analysis.
- Interest or experience with web application or mobile security, familiarity with OWASP Top 10 lists.
- Ability to work in both independent and collaborative settings.
- Good written and oral communication skills, for team collaboration and product presentations.
Black Duck considers all applicants for employment without regard to race, color, religion, sex, gender preference, national origin, age, disability, or status as a Covered Veteran in accordance with federal law. In addition, Black Duck complies with applicable state and local laws prohibiting discrimination in employment in every jurisdiction in which it maintains facilities. Black Duck also provides reasonable accommodation to individuals with a disability in accordance with applicable laws.