Skip to content
Neuer Job?Nejo!

Dein persönlicher KI-Karriere-Agent

VEVercel

Security Software Engineer, Open Source Frameworks(m/w/x)

Berlin
ab USD 208.000 - 312.000 / Jahr
Vollzeitmit HomeofficeBerufserfahren

Deep security assessments of framework internals, identifying systemic vulnerability patterns. 4+ years security engineering experience required. Equity, inclusive healthcare, and professional development events.

Anforderungen

  • Experience with Turborepo, Nuxt, Svelte/SvelteKit, SWR, Workflow, or Nitro
  • Deep appreciation for open source work
  • 4+ years security engineering experience
  • Hands-on open source contribution experience
  • Energized by root cause analysis
  • Strong JavaScript/TypeScript fundamentals
  • Familiarity with modern meta-framework internals
  • Pragmatic approach to security improvements
  • Vulnerability research experience
  • Structured security assessment methodology
  • Coordinated/responsible disclosure processes
  • Clear communication skills
  • Comfortable operating in public
  • CVE credits or published security research
  • Maintained widely used open source project
  • Heavily contributed to widely used open source project
  • Experience with supply chain security tooling
  • Thought about AI-authored contributions risk
  • Run or triaged bug bounty program

Aufgaben

  • Run deep security assessments of framework internals
  • Identify systemic patterns causing vulnerability families
  • Drive framework-level fixes and design changes
  • Triage and manage externally reported vulnerabilities
  • Coordinate embargoed fixes and publish advisories
  • Manage the CVE/CNA process end to end
  • Triage and validate incoming bug bounty reports
  • Reproduce and assess severity of findings
  • Coordinate fixes with maintainers and researchers
  • Partner with maintainers during RFCs and design reviews
  • Contribute to security-focused tooling development
  • Build linters, codemods, and CI checks
  • Harden dependency and release processes
  • Ensure secure distribution of published packages
  • Engage with the open source community
  • Represent Vercel in coordinated disclosure norms
  • Participate in security working groups

Berufserfahrung

  • 4 Jahre

Ausbildung

  • Bachelor-AbschlussODER
  • Master-Abschluss

Sprachen

  • Englischfließend

Tools & Technologien

  • Turborepo
  • Nuxt
  • Svelte/SvelteKit
  • SWR
  • Workflow
  • Nitro
  • JavaScript
  • TypeScript
  • Sigstore
  • SLSA/provenance
  • dependency and package scanning

Benefits

Attraktive Vergütung

  • Competitive compensation package
  • Equity

Gesundheits- & Fitnessangebote

  • Inclusive Healthcare Package

Mentoring & Coaching

  • Mentorship

Weiterbildungsangebote

  • Professional development events

Workation & Sabbatical

  • Flexible Time Off

Moderne Technikausstattung

  • Provided work gear

Sonstige Zulagen

  • WFH budget
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Vercel erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Gefällt dir diese Stelle?
Beta

Dein Career Agent findet täglich ähnliche Jobs für dich.


Noch nicht perfekt?

  • Vercel
    Senior Security Software Engineer, v0(m/w/x)
    Vollzeitmit HomeofficeSenior
    Berlin
    ab USD 208.000 - 312.000 / Jahr
  • Gigs
    Senior Security Engineer, Product(m/w/x)
    Vollzeitmit HomeofficeSenior
    Berlin
    ab 100.000 - 130.000 / Jahr
  • Enpal B.V.
    Staff Software Security Engineer(m/w/x)
    Vollzeitmit HomeofficeSenior
    Berlin
  • Wire
    Senior Security Engineer(m/w/x)
    Vollzeitmit HomeofficeSenior
    Berlin
    ab 1.000 / Monat
  • KNIME
    Application Security Engineer(m/w/x)
    Vollzeitmit HomeofficeSenior
    Berlin, Konstanz

Diese Jobs könnten dich auch interessieren