Red Hat

Senior Product Security Engineer – Vulnerability Management

Red Hat

full-time

Posted on:

Location Type: Hybrid

Location: BrnoCzech

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

Cyber SecurityLinuxPMP

About the role

  • Manage and provide timely response and disclosure of security vulnerabilities and incidents across Red Hat software, Fedora, and other OSS projects.
  • Ensure Red Hat Product Security processes and disclosures align with the EU Cyber Resilience Act (CRA) and other relevant regulations.
  • Conduct in-depth risk assessments on vulnerabilities in Red Hat OSS projects and communicate risks effectively to diverse stakeholders (engineers, architects, senior leadership).
  • Contribute to customer-facing security documentation, references, and data, including Common Vulnerabilities and Exposures (CVE) pages and metadata.
  • Provide technical leadership, mentor junior engineers, and drive continuous improvement in vulnerability management practices (e.g., contributing to SBOM generation).
  • Actively participate in relevant OSS working groups to shape and implement industry standards for vulnerability disclosure and coordination.

Requirements

  • 6+ years of experience in cybersecurity incident management and coordination and/or with delivering technology-related software
  • Bachelor’s degree in a technical field
  • Industry certifications like CISSP, CSSLP, CISA/CISM, PMP are a plus
  • Expert knowledge and practical understanding of the Linux Operating System
  • Proven expertise in security vulnerabilities, risk assessment, and the Confidentiality, Integrity, and Availability (CIA) triad
  • Strong change management skills to identify, track, and implement improvements for continuous enhancement of incident response following security events
  • Ability to work effectively and autonomously in a demanding, fast-paced, and culturally diverse environment across multiple time zones
  • Exceptional professional written and verbal communication skills in English.
Benefits
  • Flexible working hours
  • Professional development opportunities
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cybersecurity incident managementrisk assessmentLinux Operating Systemvulnerability managementsecurity vulnerabilitiesCommon Vulnerabilities and Exposures (CVE)SBOM generationtechnical leadershipchange management
Soft Skills
communication skillsmentoringautonomyadaptabilitystakeholder engagement
Certifications
CISSPCSSLPCISACISMPMP