Product Security Engineer
CurrentAs a Product Security Engineer at Red Hat, my responsibilities include:⦿ Incident Response Operations [RHEL/Platforms, RHEV/Cloud-Platforms, CodeReady]:Investigating and responding to security incidents affecting Red Hat products, ensuring prompt and effective resolution.⦿ Vulnerability Analysis: Analysis of flaws, performing code review, white-box testing, debugging, binary analysis and exploitation. ⦿ Vulnerability Management: Reporting identified vulnerabilities to appropriate Stakeholders [Engineering/QA Team]. Working with product teams to fix security bugs in various Red Hat Products and ensuring they are addressed in a timely and effective manner.⦿ Responsible for processing Security Erratas and their releases for RHEL. ⦿ Contribution: Contributing to the testing of Red Hat's internal Product Security tools and infrastructure.⦿ Coordination: Upstream/Industry/Vendor coordination for Embargoed Security Issues, CVEs, Process Development etc. in various open-source projects. ⦿ Communication: Communicating and discussing high/critical security-related issues with various stakeholders, including senior management, technical teams, and customers, in a clear and concise manner. ⦿ Collaboration: Collaborating, building and maintaining relationships with customers, partners, and the security community. Promoting a culture of security awareness and readiness. ⦿ Resolving security issues/queries from internal/external customer units by providing security consultation and guidance.