Senior CodeQL Analysis Engineer
2 weeks ago
About GitHub
As the global home for all developers, GitHub is the complete AI-powered developer platform to build, scale, and deliver secure software. Over 100 million people, including developers from 90 of the Fortune 100 companies, use GitHub to build amazing things together across 330+ million repositories. With all the collaborative features of GitHub, it has never been easier for individuals and teams to write faster, better code.Locations In this role you can work from Remote, United Kingdom
Overview
GitHub is seeking a Senior CodeQL Analysis Engineer for our CodeQL Expert Services team. CodeQL is GitHub's industry-leading semantic code analysis engine that lets you query code as though it were data, and is usually deployed as part of our wider GitHub Advanced Security offering. Our team supports the adoption of CodeQL amongst some of our largest and most interesting customers.
As a Senior CodeQL Analysis Engineer, you will have a direct impact on the security of some of the world’s largest code bases and the most commonly used applications. Acting as a trusted advisor, you will work closely with our customers' security teams to support them in their use of CodeQL: developing bespoke solutions using CodeQL, providing recommendations, training and working on implementing custom static analyses to help discover critical vulnerabilities in their code. We are looking for a passionate technologist who can apply cutting-edge static analysis techniques to messy real-world problems and teach our customers how to do the same.
Examples of past projects the team have undertaken include the development of over 850 CodeQL queries to cover various C/C++ Coding Standards for use in functional safety workflows in the automotive industry, the creation of a CodeQL development toolkit for supporting custom CodeQL development, working with customers to validate static contracts in C/C++ code using CodeQL and deploying cutting-edge AI technology in order to drive automatic remediation of security vulnerabilities. We also work to train customers in the use of CodeQL and help drive adoption through increasing library and framework coverage for our security queries.
Responsibilities
- Develop creative bespoke solutions using CodeQL to help solve challenging customer problems
- Use CodeQL to develop static analyses to find vulnerabilities in our customers' code
- Refine and scale analyses so they can be run across 1000s of codebases
- Provide CodeQL training for developers and security engineers
- Support the product development and adoption of AI-powered CodeQL features, such as autofix, through customer engagements
- Be a trusted advisor for our customers on all aspects of CodeQL
Qualifications
Required Qualifications:
- Several years of experience as a software engineer, software consultant, or software security engineer and fluent in software development fundamentals (version control using git, pull request workflows etc.) or equivalent education in relevant fields
- Multiple years of experience in developing or customizing source code analysis tools, compilers, debuggers, IDE tools or similar and a strong understanding of programming language fundamentals
- Demonstrable ability with at least one of the languages supported by CodeQL (C, C++, C#, Java, JavaScript/TypeScript, Python, Ruby, Kotlin, Swift and Go)
Preferred Qualifications
- Implementing or working with static analysis, with a particular focus on taint tracking or abstract interpretation; or experience implementing high-level languages (interpreters or compilers)
- Logic Programming (Datalog, Prolog, CodeQL) or Functional Programming (Haskell, OCaml, Lisp, etc.)
- Secure coding practices and triaging common types of security vulnerabilities
- Relational database fundamentals
- Working directly with customers or stakeholders to scope, propose and implement technical solutions
- Mentoring and educating other engineers and disseminating complex technical ideas and processes
GitHub values
- Customer-obsessed
- Ship to learn
- Growth mindset
- Own the outcome
- Better together
- Diverse and inclusive
Manager fundamentals
- Model
- Coach
- Care
Leadership principles
- Create clarity
- Generate energy
- Deliver success
Our teams are dreamers, doers, and pioneers, leading the way in AI, driving humanitarian efforts around the globe, and even sending open source to Mars (and beyond). At GitHub, our goal is to create the space you need to do your best work. We’re remote-first and offer competitive pay, generous learning and growth opportunities, and excellent benefits to support you, wherever you are—because we know that people flourish when they can work on their own terms.
Join us, and let’s change the world, together.
#J-18808-Ljbffr
-
Senior Engineer
2 weeks ago
United Kingdom GitHub, Inc. Full timeAs the global home for all developers, GitHub is the complete AI-powered developer platform to build, scale, and deliver secure software. In this role you can work from Remote, United Kingdom GitHub is seeking a Senior CodeQL Analysis Engineer for our CodeQL Expert Services team. CodeQL is GitHub's industry-leading semantic code analysis engine that...
-
Senior Software Engineer
2 weeks ago
United Kingdom GitHub, Inc. Full timeAbout GitHub As the global home for all developers, GitHub is the complete AI-powered developer platform to build, scale, and deliver secure software. Over 100 million people, including developers from 90 of the Fortune 100 companies, use GitHub to build amazing things together across 330+ million repositories. With all the collaborative features of...
-
Senior Software Engineer
2 weeks ago
United Kingdom GitHub, Inc. Full timeAs the global home for all developers, GitHub is the complete AI-powered developer platform to build, scale, and deliver secure software. In this role you can work from Remote, United Kingdom GitHub is the home for software development, where we collaborate to build the world's leading developer platform. In the GitHub code scanning team, we are...
-
United Kingdom Sirius Analysis Ltd Full timeHours: 37.5 Salary: Negotiable, depending on experience. The role comes with a competitive benefits package including pension (7% company contribution), additional holiday purchase options, private health care, life assurance and electric vehicle scheme. The Role: As we navigate through a period of exciting growth, we are seeking individuals at all career...
-
Process Engineering
2 weeks ago
United Kingdom The Chemical Engineer Full timeOur client develops, engineers, fabricates, supplies, and installs discreet process equipment items and complete process systems for applications within chemical /process engineering. The company’s reputation is well established and founded on its commitment to product innovation, customer service and engineering excellence. On the job training would be...
-
Senior CFD Analysis Engineer
Found in: Jooble UK C2 - 2 weeks ago
United Kingdom RJM International Full timeSenior CFD Engineer Working Hours: Mon – Friday Winchester/Hybrid Contract Type: Full Time / Permanent RJM International is a world-leading, engineering technology business that enables energy producers to transition to efficient, reliable and cost-effective low carbon generation - and we looking to expand our team to meet market demand. ...
-
Senior CFD Analysis Engineer
2 weeks ago
United Kingdom RJM International Full timeSenior CFD Engineer Working Hours: Mon – Friday Winchester/Hybrid Contract Type: Full Time / Permanent RJM International is a world-leading, engineering technology business that enables energy producers to transition to efficient, reliable and cost-effective low carbon generation - and we looking to expand our team to meet market demand. ...
-
Plant Engineer
2 weeks ago
United Kingdom The Engineer Full timeJob Title: Plant Engineer Location: Ormskirk Salary: Competitive Job type: Full-time, Permanent J J Bullen was founded in 1982 by Mr. John Joseph Bullen, who specialises in plant and machinery hire. The business continued to grow and build its respected reputation along the way. As the years passed, J Bullen underwent a strategic transition. It...
-
Senior Stress Analysis Engineer
1 week ago
United Kingdom Subsea 7 Full timeSubsea7 are looking for a Senior Stress Analysis Engineer to join the Pipeline Group (PG) at our Sutton, London office on a full-time, permanent basis. Working as part of or overseeing a team, our stress analysis engineers will perform advanced finite element analyses (FEA) of rigid pipeline methods (S-lay, J-lay and Reel-lay) supporting either live...
-
Proposals Process Engineer
2 weeks ago
United Kingdom The Chemical Engineer Full timeWest of London /M4 Process Systems £27-£42K PA Our client develops, engineers, fabricates, supplies, and installs discreet process equipment items and complete process systems for applications within chemical /process engineering. The company’s reputation is well established and founded on its commitment to product innovation, customer service and...
-
Principal Performance Analysis Engineer
2 weeks ago
United Kingdom Endeavour Recruitment Solutions Full timeSenior / Principal Engineer – Permanent - London ~ Software Engineer ~ Job Type: Permanent ~ Technologies: C++ 3D Maths Animation Engine Game Engine Graphics Architecture Graphics FX OpenGL Perforce Physics Dynamics Collision PS4 VR Senior / Principal Engineer – Permanent - London Posted Thursday, 12 May 2016 Endeavour Recruitment has a...
-
Data Programmer
2 weeks ago
United Kingdom Senior plc Full timeWho is Senior plc? Senior is a FTSE listed (symbol SNR) international manufacturing Group with 26 operations in 12 countries. Senior designs, manufactures and markets high-technology components and systems for the principal original equipment producers in the worldwide aerospace, defense, and land vehicle and power & energy markets. We have a long history...
-
CMM Programmer
2 weeks ago
United Kingdom Senior plc Full timeWho is Senior plc? Senior is a FTSE listed (symbol SNR) international manufacturing Group with 26 operations in 12 countries. Senior designs, manufactures and markets high-technology components and systems for the principal original equipment producers in the worldwide aerospace, defense, and land vehicle and power & energy markets. We have a long history...
-
Remote Senior Software Engineer
Found in: Jooble UK C2 - 2 weeks ago
United Kingdom Oracle Full timeSenior Software Engineer for Security EHT UK, Remote Global Product Security’s Ethical Hacking Team (EHT) is responsible for performing in-depth security assessments across Oracle’s entire product and service portfolio. Over the years, the EHT has built a suite of pioneering security tools used for both finding vulnerabilities during assessments...
-
Remote Senior Software Engineer
2 weeks ago
United Kingdom Oracle Full timeSenior Software Engineer for Security EHT UK, Remote Global Product Security’s Ethical Hacking Team (EHT) is responsible for performing in-depth security assessments across Oracle’s entire product and service portfolio. Over the years, the EHT has built a suite of pioneering security tools used for both finding vulnerabilities during assessments...
-
Senior Software Engineer for Security EHT
Found in: Appcast UK C C2 - 1 week ago
United Kingdom Oracle Full timeSenior Software Engineer for Security EHTUK, Remote Global Product Security’s Ethical Hacking Team (EHT) is responsible for performing in-depth security assessments across Oracle’s entire product and service portfolio. Over the years, the EHT has built a suite of pioneering security tools used for both finding vulnerabilities during assessments and...
-
Senior Software Engineer for Security EHT
Found in: Jooble UK C2 - 2 weeks ago
United Kingdom Oracle Full timeSenior Software Engineer for Security EHT UK, Remote Global Product Security’s Ethical Hacking Team (EHT) is responsible for performing in-depth security assessments across Oracle’s entire product and service portfolio. Over the years, the EHT has built a suite of pioneering security tools used for both finding vulnerabilities during assessments and...
-
Senior Software Engineer for Security EHT
Found in: Appcast UK C2 - 1 week ago
United Kingdom Oracle Full timeSenior Software Engineer for Security EHTUK, Remote Global Product Security’s Ethical Hacking Team (EHT) is responsible for performing in-depth security assessments across Oracle’s entire product and service portfolio. Over the years, the EHT has built a suite of pioneering security tools used for both finding vulnerabilities during assessments and...
-
Senior Software Engineer for Security EHT
2 weeks ago
United Kingdom Oracle Full timeSenior Software Engineer for Security EHT UK, Remote Global Product Security’s Ethical Hacking Team (EHT) is responsible for performing in-depth security assessments across Oracle’s entire product and service portfolio. Over the years, the EHT has built a suite of pioneering security tools used for both finding vulnerabilities during assessments and...
-
Senior Software Engineer for Security EHT
Found in: Appcast Linkedin GBL C2 - 2 weeks ago
United Kingdom Oracle Full timeSenior Software Engineer for Security EHTUK, Remote Global Product Security’s Ethical Hacking Team (EHT) is responsible for performing in-depth security assessments across Oracle’s entire product and service portfolio. Over the years, the EHT has built a suite of pioneering security tools used for both finding vulnerabilities during assessments and...
