Description:

We are seeking exceptional candidates for our Analysis Engineering team to work on and enhance the analysis engine behind Mayhem, which is responsible for discovering bugs and security vulnerabilities.
Mayhem has already found vulnerabilities in open source projects, components in aircraft and automotive systems, and well-known embedded devices.
The role involves working on cutting-edge technology designed to find vulnerabilities and shorten the cycle of identifying and fixing software flaws.
You will collaborate with teammates both local and remote through various communication methods including pull requests, in-person conversations, and Slack.
Responsibilities include developing new features, fixing interesting bugs, writing tests, and reviewing your teammates’ code.
You will also collaborate with support engineers and customers to improve the security and quality of software in their ecosystem.
The position requires building expertise and responsibility for specific components of the Mayhem ecosystem.

Requirements:

Candidates must demonstrate a passion for building innovative and easy-to-use tools for finding bugs, improving code quality and security, and enhancing the debugging experience.
A Bachelor’s, Master’s, or PhD degree in computer science or a related discipline is required, showcasing strong computer science fundamentals.
Experience with systems-level programming in Linux is necessary.
Proficiency in Rust, Python, and/or C/C++ development is required.
Knowledge of common compiler concepts such as types, code generation, register allocation, stack frames, inlining, and control flow graphs is essential.
Familiarity with binary execution formats, assembly, linkers, and loaders is required.
Understanding of operating system concepts including memory management, process lifecycle, and I/O is necessary.
A background in vulnerability research or reverse engineering is preferred.
Prior experience with technologies in program analysis like fuzzing and symbolic execution is preferred.
Familiarity with modern exploitation techniques and mitigations/counter-measures is preferred.
Experience with run-time analysis tools such as Valgrind or LLVM sanitizers is preferred.
Knowledge of OCaml, Haskell, or other functional programming languages is preferred.
Familiarity with containerization technology such as Docker/OCI is preferred.

ForAllSecure offers a work environment that is committed to equal employment opportunity and free of discrimination and harassment.
The company promotes a culture of hunger, respect, accountability, and a growth mindset.
Employees are provided with opportunities for professional growth and development.
The company is backed by NEA and KDI, having recently raised Series B funding, indicating strong financial support and stability.
ForAllSecure's innovative technology has been recognized with multiple awards, providing employees with a sense of pride in their work.
The company collaborates with high-profile clients, offering employees the chance to work on impactful projects in the field of software security.