The Java Security Engineering team is responsible for the Java platform security libraries and security tools development. The technologies we provide include a rich set of APIs, tools, and implementations of security algorithms and protocols. The Java security APIs span a wide range of areas, including cryptography, public key infrastructure, secure communication, and authentication. We provide the developers with a comprehensive security framework for writing secure applications, and tools for the users or administrators to securely manage applications.
We are looking for a crypto expert to join our team to enhance our existing algorithm implementation and add new functionality for the upcoming releases.
Responsibilities
- Maintain and enhance existing algorithm implementations and add new functionality for the upcoming releases
- Take initiatives to debug and solve difficult issues
- Work with external developers on OpenJDK, customers, and partners on defects and feature improvement requests for future releases
- Communicate and collaborate within a globally distributed Java development organization
Skills & Experience
- Proven hands-on experience in modern software security technologies using Java
- Knowledge of Java security library internals would be a plus
- Knowledge of TLS is highly desirable, including in-depth knowledge of state of the art cipher suites
- Hands-on knowledge on various versions of TLS (specifically the differences of each version in addressing security vulnerabilities)
- Knowledge of authentication, PKI, and low-level crypto algorithm implementation
- Familiarity with side-channel timing issues is a plus
- Extensive experience in writing unit and regression tests
- Excellent critical thinking and decision-making skills
- Must be able to multi-task among multiple assignments
- Excellent communication skills