Senior Software Security Engineer
Responsible for executing the Security Development Lifecycle (SDL) for Citrix On-Prem and Cloud products to ensure that our software meets the customer expectation of security robustness
Able to drive and execute SDL best practices and its integration with the CI/CD, Agile and Waterfall development models
Create and deliver advanced security training and guidance to product engineers
Able to guide product development teams on design changes as per security requirements
Establishes and maintains thorough and accurate documentation of all work
Communicates technical issues within scope of assignment
Able to drive negotiation in the interest of security
Conducts reviews of specific security fixes as necessary
Conduct product penetration test in a non-disruptive way for IT/Cloud deployments, including exploit creation to demonstrate a proof of concept
Validate the efficacy of defensive mechanisms, as well as, the engineering adherence to security policies
Qualifications (Knowledge, Skills, Abilities)
- Expert in at least 3 of these areas in security – System, Web, Network, Mobile, Cloud, Windows, Cryptography
- Capable of writing exploits for identified vulnerabilities in the area of expertise
- Solid understanding of most common software vulnerabilities and standard secure coding practices
- Excellent capabilities to identify security vulnerabilities and root cause analysis
- Proficiency in a programming language(s) ( C, C++, Python)
- Proficiency in System Internals (Windows or Unix)
- Demonstrated understanding of Computer Science fundamentals (OS, Networks)