Senior Software Researcher

OPENTEXT - THE INFORMATION COMPANY

As the Information Company, our mission at OpenText is to create software solutions and deliver services that redefine the future of digital. Be part of a winning team that leads the way in Enterprise Information Management. 

WHO WE ARE:

At OpenText, everything we do is based on a simple idea: The fastest way to get results is to build on what you have. Our software solutions enable organizations to do just that. Secure and scalable, with analytics built-in, they bridge the gap between existing and emerging IT—fast-tracking digital transformations across DevOps, Hybrid IT, Security, and Predictive Analytics. In the race to innovate, OpenText customers have a clear advantage.  Our portfolio spans the following areas: DevOps | IT Operations| Cloud | Security | Info Governance | Big Data, Machine Learning, & Analytics

About Our Team:

The Software Security Research (SSR) Team specializes in approaching security from the perspective of how we build and use software.

Our team is responsible for conducting security research which leads to enhanced security products as well as contributions to the Security Research Blog, whitepapers, conference presentations, and annual Cyber Risk Report. Furthermore, our team has identified new types of software vulnerabilities, defined the taxonomy used by all Fortify products, and highlighted broad security problems in development practices.

Fortify SSR is seeking a self-driven enterprise Senior Software Security Researcher who understands that security is more than firewalls and encryption.

Software security is becoming a bigger concern as more and more organizations are experiencing embarrassing public incidents with large losses of data.

What you’ll be doing

• Create algorithms to help people find potential vulnerabilities in their code
• Finding 0 days in open-source projects and customer code
• Investigating and implementing techniques to exploit security vulnerabilities
• Discovering new methods for automatic identification of vulnerabilities
• Extracting the essence of known vulnerabilities to shape products of the future
• Help educate and evangelize security best practices to users and those around you
• Publishing and presenting Fortify’s research and other relevant security topics
• Keeping up with and assessing the latest trends in software security 

What you’ll bring

• Master’s or PhD in relevant Computer Science, Cyber Security, or Engineering program
• 3+ years of experience in a security engineering role, or in a software development role with a strong focus in enterprise security
• Alternatively, a Bachelor’s degree with 7+ years of relevant application security experience
• In-depth understanding of mobile application programming languages (e.g. Java, Kotlin, Swift, Objective-C, C#) 
• Extensive experience with mobile development and common software security flaws
• Excellent analytical and problem-solving skills 
• Strong technical communication skills with the ability to effectively communicate product architectures and design proposals
• Interest in software security and secure development

Nice to have:

• Proficient in multiple additional programming and scripting languages (e.g., Go, C/C++, Scala, Python, JavaScript)
• Source code auditing experience (especially Fortify SCA)
• Experience working in a large enterprise software development environment (e.g., agile, scrum)
• Data science or AI experience

OpenText's efforts to build an inclusive work environment go beyond simply complying with applicable laws. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please contact us at hr@opentext.com.