Google's Chrome Security team aims to provide the most secure platform to navigate the web by ensuring Chromium is secure by design and resilient to exploitation.
Requirements
- 2 years of experience with software development in the C++ programming language.
- 1 year of experience in building software for data privacy or security.
- Experience building software in the Rust programming language.
- Experience contributing to the Chromium open-source project.
- Familiarity with web browser internals.
- Understanding of memory safety vulnerabilities and exploit primitives.
- Experience with data structures or algorithms in either an academic or industry setting.
Responsibilities
- Take high-level security concepts (e.g., "The GPU process is a sandbox escape vector") and translate them into concrete engineering solutions: structure-aware fuzzers, custom sanitizer hooks etc.
- Design and implement structure-aware fuzzers for complex Chromium components.
- Analyze crashes identified by ClusterFuzz to determine security impact and remediation.
- Partner with the ClusterFuzz infrastructure team to ensure our tooling scales.
- Improve fuzzing engines to detect new bugs.
- Manage project priorities, deadlines, and deliverables.
- Design, develop, test, deploy, maintain, and enhance software solutions.
Other
- Bachelor’s degree or equivalent practical experience.
- Master's degree or PhD in Computer Science or related technical field.
- 2 years of experience in a related field.
- Ability to work in the US, with locations in New York, NY, USA; Kirkland, WA, USA
- Must be authorized to work in the United States
