Security Developer coordinating vulnerabilities and malware issues for the Python Software Foundation. Collaborating with teams to enhance security practices and document threat models.
Responsibilities
Triage and remediate vulnerabilities in CPython and related projects in coordination with the Python core team.
Remediate malware and supply-chain attacks for projects on the Python Package Index.
Maintain and operate infrastructure for the Python Security Response Team, PSF CVE Numbering Authority, and security tools in use by Python, like OSS-Fuzz.
Propose and develop improvements to the above workflows to scale the response to meet future demand.
Work with the Python Security Response Team and Python core team to develop and refine vulnerability and secure development practices.
Work with the Python core team to document the security and threat models for the Python programming language, standard library, and related projects.
Researching, authoring, and publishing public communications about metrics, impact, and potential future work for Python security.
Requirements
3-5 years experience with Python or C programming languages.
Knowledge about vulnerabilities affecting programs written in C, such as memory safety issues.
Asynchronous and written communication skills with the ability to manage and prioritize multiple concurrent threads.
Experience working with open source projects and communities is a plus.
Security certifications are not required.
Benefits
US employees are eligible for healthcare and other benefits
Presales Security Expert supporting sales leads and educating customers on security at Fortinet. Responsible for technical resource during sales calls and post - sales training.
IAM Director managing customer - facing identity and access management security programs at RBC. Assessing risks, developing controls, and ensuring compliance with standards and regulations.
Lead AI Red Team focusing on adversarial testing and security for enterprise - scale AI systems. Collaborate with engineering and compliance to map vulnerabilities and document findings.
Intern in operational security at Investissement Québec, supporting security alert management and vulnerability tracking in a supervised learning environment.
IT Information Security Lead at Mirego, responsible for technology and information security management. Overseeing compliance and IT strategies while maintaining operational efficiency.
Cybersecurity Specialist focusing on offensive security for Exposant 3. Performing penetration testing, security audits, and team knowledge transfer in a hybrid work setup.
Financial security advisor in life and health insurance, developing and maintaining client relationships. Selling insurance products and assessing customer needs to provide personalized solutions.
Senior Security Engineer designing and maintaining Microsoft 365 security solutions at ResMed. Focusing on compliance, incident response, and collaboration with global teams.
Senior Infrastructure professional solving practical security challenges and improving enterprise systems security at Confluence. Focused on implementation, remediation, and secure operations across Windows and Linux environments.
Senior infrastructure professional responsible for vulnerability remediation and security improvements across enterprise systems at Confluence. Hands - on role involving Windows and Linux environments with strong collaboration with Cybersecurity team.