Job Title

Overview Join to apply for the OpenJDK Security Developer role at IBM A career in IBM Software means youll be part of a team that transforms our customers challenges into solutions. We are seeking a JVM developer to join our IBM OpenJDK Security team. As part of our team, you will be responsible for developing and maintaining high-quality OpenJDK releases, working with a variety of technologies and programming languages, ensuring correctness and verifying security patches, collaborating directly with the Vulnerability Group to ensure the safety of the Java platform for both upstream and downstream distributions. Your Role and Responsibilities Work directly with the upstream communities of OpenJDK on bug fixes and perform backports from later versions of OpenJDK to help maintain our list of supported versions of OpenJDK for our customers. Perform security contributions for OpenJDK, spanning a number of topics such as security providers, post quantum cryptography, integrations with FIPS platforms and general day to day security analysis, debugging and patching. Collaborate closely with the JVM team and core libraries teams, participate in upstream and downstream development with an upstream first approach. Preferred Education Bachelors Degree Required Technical and Professional Expertise Strong background in software development, demonstrating expertise in programming languages, in particular Java and C++. Selfstarter with a proactive mindset, able to initiate and drive projects independently, analyse and find problems and solve them with minimal guidance and supervision. Demonstrated excellence in problemsolving, with the ability to tackle complex issues and find effective solutions, and the ability to review other peoples code, understand complex code interrelation and find critical security vulnerabilities. Ability to work seamlessly as part of a distributed team, contributing to collective goals and fostering a collaborative work environment, and the ability to work with upstream Open Source communities on public code. Proven experience of cryptography standards. Proven experience of maintenance of legacy software. Excellent communication skills, both written and orally, in English. Preferred Technical and Professional Experience 5 years of C/C++ experience. 5 years of experience in software analysis and security testing. Excellent knowledge and understanding of the JVM language specification and the Java language. Having a role (Author, Committer, Reviewer, etc.) with the upstream OpenJDK project is a plus. Experience with penetration testing, white hacking and code breaking processes is highly desired. Experience with FIPS and Post Quantum cryptography is highly desired. Existing experience with the Java Garbage Collectors is a plus. #J-18808-Ljbffr